This project is not covered by Drupal’s security advisory policy.

The Path Access module gives site administrators an additional layer of access control to all pages of a Drupal site.


Although a lot of the Drupal modules provide some degree of access control permissions it never covers all possible requirements users have. Path_access provides the means to restrict pages based on their path alias - meaning you can lock out certain user role groups from whole sections of a site using wildcards.

Page visibility configuration is carried out in exactly the same way as block visibility in Drupal core.

Drupal 6

This module will not hide menu items that lead to access denied pages. To hide unwanted menu items use Menu Per Role.

Drupal 7

The Drupal 7 version of this module uses hook_menu_alter to adjust the permissions of paths. It uses on the Chain Menu Access API to acomplish this is a clean and generic way.

Unlike the Drupal 6 version, if access is denied to a particular path, menu items that lead to that path will be hidden. If you wish to show these menu items to users who are not allowed to access them you can use the Always Visible module.


Developed by Mike Carter of Ixis
Co-maintained by Tom Kirkpatrick (mrfelton) of SystemSeed.

Supporting organizations: 

Project information