This project is not covered by Drupal’s security advisory policy.

This module provides a node entity reference selection handler that extends the default behavior to have access checks run against a fixed user rather than the current. It was built to allow admins to populate public-facing entity reference fields without fear of including inaccessible content.

Installation

Install as you would normally install a contributed Drupal module. See: https://www.drupal.org/node/895232 for further information.

Configuration

When configuring the entity reference field, choose the Default with fixed user access reference method. As well as the usual configuration options, there is an additional field User to run as. Enter the user to have access checks run as. Be careful if choosing an authenticated user: there are security implications.

Supporting organizations: 
Fabb
Implementation
Brooks Digital
FAITH Catholic
Sponsorship

Project information

  • caution Minimally maintained
    Maintainers monitor issues, but fast responses are not guaranteed.
  • caution Maintenance fixes only
    Considered feature-complete by its maintainers.
  • Project categories: Access control, Content editing experience
  • Created by andyf on , updated
  • shield alertThis project is not covered by the security advisory policy.
    Use at your own risk! It may have publicly disclosed vulnerabilities.

Releases

1.0.0-alpha1 released 6 June 2025
Works with Drupal: ^10 || ^11
Install:

Development version: 1.x-dev updated 6 Jun 2025 at 16:24 UTC

Using Composer to manage Drupal site dependencies