I looked through the issues and saw a number of related problems (and surly replies) because many presume that the admin permission to this module won't restrict access to any part of it.
I'll let someone else decide whether or not this is a bug, but I've provided a patch that will provide this capability.
In addition, if the user with admin access has no imce profile, this patch assigns them the "User-1" profile.
Finally, if this patch isn't put into the release, I would advise anyone working on this project to review these API functions, and use them where appropriate:
A good understanding of these two functions will reveal opportunities to avoid accessing $user->uid directly.
Comment | File | Size | Author |
---|---|---|---|
#1 | imce-admin-fix-v2.patch | 3.21 KB | Daniel Norton |
imce-admin-fix.patch | 3.05 KB | Daniel Norton | |
Comments
Comment #1
Daniel Norton CreditAttribution: Daniel Norton commentedUpdated patch.
Comment #2
ufku CreditAttribution: ufku commented