Warn or prevent users from unpublishing/deleting Virtual Y Login/Dashboard pages #134

froboy · 2021-04-23T13:39:24Z

If a privileged user removes either the Virtual Y Login page or Virtual Y homepage they might accidentally break the site. We should warn users or prevent these actions.

YUSA discussed this and we decided to completely block users from deleting these pages, but not do anything else, mostly for simplicity sake. It may be more desirable to present an interstitial Are you sure you want to do this page if either of these actions is taken.

Our code, for adapting:

/**
 * Implements hook_node_access().
 */
function our_module_node_access(NodeInterface $node, $op, AccountInterface $account) {
  $config = \Drupal::config('openy_gated_content.settings')->getRawData();
  $url = \Drupal::service('path_alias.manager')->getAliasByPath('/node/'. $node->id());
  switch ($op) {
    case 'delete':
      if($url == $config['virtual_y_url'] || $url == $config['virtual_y_login_url']
        || $url == $config['virtual_y_logout_url']) {
        return AccessResult::forbidden();
      } else {
        return AccessResult::neutral();
      }
  }
}

The text was updated successfully, but these errors were encountered:

froboy mentioned this issue Apr 26, 2021

Disable/add permissions to page tabs inside VY application #47

Open

sarah-halby added Severity: Minor Type: Enhancement labels Apr 27, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Warn or prevent users from unpublishing/deleting Virtual Y Login/Dashboard pages #134

Warn or prevent users from unpublishing/deleting Virtual Y Login/Dashboard pages #134

froboy commented Apr 23, 2021

Warn or prevent users from unpublishing/deleting Virtual Y Login/Dashboard pages #134

Warn or prevent users from unpublishing/deleting Virtual Y Login/Dashboard pages #134

Comments

froboy commented Apr 23, 2021