Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.Blog module does not allow anonymous users to post content regardless of the permissions set, and thus the "edit own" and "delete own" permissions also make no sense for the blog module (see blog_access()). The attached patch edits the descriptions provided by the blog module in blog_perm() to include a disclaimer that the irrelevant settings do not apply to anonymous users.
| Comment | File | Size | Author |
|---|---|---|---|
| #2 | blog_permission_descriptions_02.patch | 1.56 KB | cwgordon7 |
| blog_permission_descriptions_01.patch | 1.56 KB | cwgordon7 |
Comments
Comment #2
cwgordon7 commentedSorry about that, $type will, of course, be undefined, we should use a hardcoded 'blog' instead.
Comment #3
damien tournoud commentedThis is great, those permission descriptions *are* useful, even if that page has a little too much text now.
Comment #4
sunPlease do not abbreviations in comments. The "even" might go, too. Maybe the entire comment should be reworked to rather explain the WHYs. "Does not make sense" does not explain anything.
Comment #5
Jaza commentedI think that this issue can best be solved as part of the larger effort of #248598: Label permissions which are warned about in the user interface. Tempted to mark this duplicate or to close it, but I'll leave that for someone else to decide.
This issue is also a bit different, because it's about some permissions that are simply useless / irrelevant for anonymous users, rather than dangerous. This could perhaps be considered more a bug with blog.module than with the permissions system (for overriding its own permissions such that they're irrelevant for a particular role).
Comment #6
deekayen commented#233301-125: Remove blog module from core removed blog from core.
Comment #7
nevergoneOutdated issue.