wizhippo / ezplatform-fieldgroup-limitation
Repository dedicated to fieldgroup limitation for eZ Platform
Installs: 2
Dependents: 0
Suggesters: 0
Security: 0
Stars: 0
Watchers: 3
Forks: 0
Open Issues: 0
Type:ezplatform-bundle
Requires
- php: ^7.3
- ezsystems/ezpublish-kernel: ^8.0
- symfony/config: ^4.3
- symfony/console: ^4.3
- symfony/dependency-injection: ^4.3
- symfony/form: ^4.3
- symfony/http-kernel: ^4.3
- symfony/yaml: ^4.3
Requires (Dev)
- friendsofphp/php-cs-fixer: ^2.15
This package is auto-updated.
Last update: 2024-04-19 09:35:39 UTC
README
Repository dedicated to fieldgroup limitation for eZ Platform.
Limits AdminUI forms to fields the user has permission to. Basic permission enforcement support enforced by
BeforeCreateContentEvent and BeforeUpdateContentEvent events that should catch is a user tries to use REST/graphql to
modify content. REST/graphql read operations are not filtered on Read.
You can create policies like the below to limit field access:
Content Field / Create / Field Group: internal_use
Content Field / Edit / Field Group: internal_use
Content Field / Read / Field Group: internal_use
Make sure that if limitiing Content Field / Create the user has the ability to populate all manditory fields or an
exception will be thrown.
Content Field / Read / Field Group enforced only in forms. Templates need to be modified to check if usr can read field
or not canUser('content_field', 'read', $contentType, [$field])