This project is not covered by Drupal’s security advisory policy.
Welcome to a brand new permission management system of Drupal!
A set of permissions is named 'role' in the Drupal world. It is under configuration control, and there is no (simple) way to to reveal the permission management to the endusers - properly.
This module extends the Drupal way.
By this module, the roles could be content entities as well. This means the classic way isn't touched but the non-admin users can set up any combinations of permission you allow.
A short video is coming soon..
Use case
You are a developer of a company's system. The company has several department (Management, HR, Marketing). Your system has hundreds of permissions, 25-30 roles. The HR manager has 'view reports', 'manage reports' perm, she needs assistants with 'view reports' role only.
What happened until now? She called you, you created the 31. new role named 'HR Assistant' with the 'view reports' permission, export the config, release, then somebody or you attached the new role to the assistant.
And what now? You have already created a content role bundle: HR Management. You enabled the following permissions on the bundle form:
- HR Management: Add/remove role to a user
- HR Management: Create new roles
- HR Management: Delete any roles
- HR Management: Edit any roles
- view reports
- manage reports
You already created a content role entity named HR Manager with all permissons above, the HR Manager already owns this content role entity.
The HR Manager creates a new content role: My assistant, checks the 'view reports' permission only, and adds that to her new assistant(s).
No more phone calls, no more config export, no more release, every permission manager has full control over their set of permissions defined by a content role type.
Usage
- Go to the admin/structure/content_role_type
- Add a new content role type. A content role type contains a set of permissions, which can be managed by the users with Administer content roles permission. Check every permission you want to reveal to your permission manager.
- Create a content role eg. Manager and attach to the enduser, who will control this set of permissions.
Other extras:
- Every user has a Permissions tab to overview which permissions they have and provided by (a content role or normal role)
- Every content role has a list of owner.
NOTE! This module is a very early bird and needs a lot of testing. It's under heavy development. Feel free to comment in the issue queue.
Supporting organizations:
Project information
Seeking co-maintainer(s)
Maintainers are looking for help reviewing issues.- Project categories: Administration tools, Security, Access control
- Created by szantog on , updated
This project is not covered by the security advisory policy.
Use at your own risk! It may have publicly disclosed vulnerabilities.
