liquidlight/typo3-elevate-to-admin

Allow users to elevate themselves to admin if they have permission to do so

Maintainers

Details

github.com/liquidlight/typo3-elevate-to-admin

Homepage

Source

Issues

Installs: 7

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 0

Forks: 0

Open Issues: 2

Type:typo3-cms-extension

2.0.0 2025-09-17 06:52 UTC

Requires

Requires (Dev)

GPL-2.0+ e681c27c02a6346b8086704ceccf1562e99cd567

  • Liquid Light <info.woop@liquidlight.co.uk>
  • Mike Street <mike.woop@liquidlight.co.uk>

This package is auto-updated.

Last update: 2025-09-17 06:55:26 UTC

README

Allow users to elevate themselves to admin if they have permission to do so.

Conforms TYPO3 to Cyber Essentials/ISO 27001 standards where users are not supposed to be logging in with an Admin account.

Installation

  1. composer require liquidlight/typo3-elevate-to-admin
  2. That's it - every user which was set as an admin will now be a non-admin when they login. They can elevate themselves to admin mode by using the dropdown in the top right

Screenshot of dropdown

The user can exit admin mode by using the same dropdown.

Events

The extension dispatches PSR-14 events that allow you to customize the behaviour:

BeforeAdminElevationProcessEvent

This event is dispatched before the admin elevation processing begins. You can use it to skip the elevation process entirely based on custom conditions.

Example: Make everyone admin in development mode

<?php

namespace MyVendor\MyExtension\EventListener;

use LiquidLight\ElevateToAdmin\Event\BeforeAdminElevationProcessEvent;
use LiquidLight\ElevateToAdmin\Traits\AdminElevationTrait;
use TYPO3\CMS\Core\Core\Environment;

final class DevModeAdminListener
{
    use AdminElevationTrait;

    public function __invoke(BeforeAdminElevationProcessEvent $event): void
    {
        if (Environment::getContext()->isDevelopment()) {
            $user = $event->getBackendUser();

            // Make user admin if they can elevate and aren't already admin
            if ($this->canUserElevate($user) && !$user->isAdmin()) {
                $this->setAdminElevation((int)$user->user['uid']);
            }

            // Skip normal processing since we've handled it
            $event->skipProcessing();
        }
    }
}

Register the event listener in Configuration/Services.yaml:

services:
  MyVendor\MyExtension\EventListener\DevModeAdminListener:
    tags:
      - name: event.listener
        identifier: 'dev-mode-admin'
        event: LiquidLight\ElevateToAdmin\Event\BeforeAdminElevationProcessEvent

Testing

This extension includes comprehensive unit and functional tests with database integration.

Unit Tests

Unit tests can be run with

composer i
composer test-unit

Functional Tests

Unit tests can be run with

composer i
composer test-functional