Hello,
I upgraded a website from Drupal 4.4 to 4.5 today, and I have a
lingering permissions problem. The problem is not new, however today I
know that I'm using unpatched code. (Not entirely true, I have 4.5.1 +
Junyor's comment.module patch).
What happens is that the "anonymous user" role gets all of the
permissions granted to the "authenticated user" role. This has been true
for me at least since I upgraded to Drupal 4.4, and I was kinda hoping it
would go away with an upgrade to 4.5.
I don't believe there's anything abnormal with the user's table (it
matches another Drupal installation I have):
SELECT * FROM users WHERE uid = 0
+-----+------+------+------+------+------+-----------+-------+-----------
+---------+--------+----------+----------+------+------+---------+-------
--+
| uid | name | pass | mail | mode | sort | threshold | theme | signature |
| changed | status | timezone | language | init | data | created | picture
| |
+-----+------+------+------+------+------+-----------+-------+-----------
+---------+--------+----------+----------+------+------+---------+-------
--+
| 0 | | | | 0 | 0 | 0 | | |
| 0 | 0 | NULL | | | NULL | 0 | |
+-----+------+------+------+------+------+-----------+-------+-----------
+---------+--------+----------+----------+------+------+---------+-------
--+
1 row in set (0.00 sec)
For example, got to http://kerneltrap.org/, and without logging in see
how there's an option for "my blog". Perhaps more interesting, click
"create content" and see that "blog entry" shows up in the navigation
block, but not in the main "create content" section. Clicking "blog
entry" offers details on leaving a blog, but doesn't actually let you
leave one.
With all the recent work on permissions, I'm hoping someone will know
offhand what's gone wrong and how I can fix it... Ideas?
Thanks,
-Jeremy
--
[ Drupal support list | http://list.drupal.org/ ]
|
