RequirePermission not working The 2019 Stack Overflow Developer Survey Results Are InIs it possible to access Twig variables in a plugin variable using PHP?Could I use categories for users instead of user groups?sessions being read inconsistentlyCan a non-admin add Entry types into a section?Users allocating permissions beyond their ownNon-admins not authorized to create entry via frontendRestict admin user permissions to only editing users he/she has created.Output Checkbox Data on TemplateBasics of overriding an admin page template - Craft 3Editing User Email Address
Why was M87 targeted for the Event Horizon Telescope instead of Sagittarius A*?
Dropping list elements from nested list after evaluation
Does adding complexity mean a more secure cipher?
Is it ethical to upload a automatically generated paper to a non peer-reviewed site as part of a larger research?
Cooking pasta in a water boiler
What to do when moving next to a bird sanctuary with a loosely-domesticated cat?
Can a flute soloist sit?
How can I add encounters in the Lost Mine of Phandelver campaign without giving PCs too much XP?
Button changing its text & action. Good or terrible?
Correct punctuation for showing a character's confusion
How to notate time signature switching consistently every measure
Will it cause any balance problems to have PCs level up and gain the benefits of a long rest mid-fight?
Are there any other methods to apply to solving simultaneous equations?
Why does the nucleus not repel itself?
Can I have a signal generator on while it's not connected?
writing variables above the numbers in tikz picture
Did Scotland spend $250,000 for the slogan "Welcome to Scotland"?
Old scifi movie from the 50s or 60s with men in solid red uniforms who interrogate a spy from the past
"as much details as you can remember"
Why can't devices on different VLANs, but on the same subnet, communicate?
What is the motivation for a law requiring 2 parties to consent for recording a conversation
A female thief is not sold to make restitution -- so what happens instead?
Is there a way to generate a uniformly distributed point on a sphere from a fixed amount of random real numbers?
A word that means fill it to the required quantity
RequirePermission not working
The 2019 Stack Overflow Developer Survey Results Are InIs it possible to access Twig variables in a plugin variable using PHP?Could I use categories for users instead of user groups?sessions being read inconsistentlyCan a non-admin add Entry types into a section?Users allocating permissions beyond their ownNon-admins not authorized to create entry via frontendRestict admin user permissions to only editing users he/she has created.Output Checkbox Data on TemplateBasics of overriding an admin page template - Craft 3Editing User Email Address
I'm using the requirePermission tag in the templates for my Craft multisite. I only want users who have access to 'edit' that site be able to view it.
My code is:
% requirePermission('editSite: (currentSite.id)') %
It works fine when logged in as admin, however it returns a 403 for every other user, regardless of their permissions. Please help!
I'm aware I can use requireLogin but I want users to have access to some sites and not others
templating permissions
New contributor
add a comment |
I'm using the requirePermission tag in the templates for my Craft multisite. I only want users who have access to 'edit' that site be able to view it.
My code is:
% requirePermission('editSite: (currentSite.id)') %
It works fine when logged in as admin, however it returns a 403 for every other user, regardless of their permissions. Please help!
I'm aware I can use requireLogin but I want users to have access to some sites and not others
templating permissions
New contributor
add a comment |
I'm using the requirePermission tag in the templates for my Craft multisite. I only want users who have access to 'edit' that site be able to view it.
My code is:
% requirePermission('editSite: (currentSite.id)') %
It works fine when logged in as admin, however it returns a 403 for every other user, regardless of their permissions. Please help!
I'm aware I can use requireLogin but I want users to have access to some sites and not others
templating permissions
New contributor
I'm using the requirePermission tag in the templates for my Craft multisite. I only want users who have access to 'edit' that site be able to view it.
My code is:
% requirePermission('editSite: (currentSite.id)') %
It works fine when logged in as admin, however it returns a 403 for every other user, regardless of their permissions. Please help!
I'm aware I can use requireLogin but I want users to have access to some sites and not others
templating permissions
templating permissions
New contributor
New contributor
New contributor
asked 3 hours ago
Aron15Aron15
61
61
New contributor
New contributor
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
You want:
% requirePermission("editSite:#currentSite.id") %
The way you have it now, the permission it's checking is the literal string editSite: (currentSite.id)
which no one will have permission for.
c.f.: Twig string interpolation
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "563"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Aron15 is a new contributor. Be nice, and check out our Code of Conduct.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcraftcms.stackexchange.com%2fquestions%2f30125%2frequirepermission-not-working%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
You want:
% requirePermission("editSite:#currentSite.id") %
The way you have it now, the permission it's checking is the literal string editSite: (currentSite.id)
which no one will have permission for.
c.f.: Twig string interpolation
add a comment |
You want:
% requirePermission("editSite:#currentSite.id") %
The way you have it now, the permission it's checking is the literal string editSite: (currentSite.id)
which no one will have permission for.
c.f.: Twig string interpolation
add a comment |
You want:
% requirePermission("editSite:#currentSite.id") %
The way you have it now, the permission it's checking is the literal string editSite: (currentSite.id)
which no one will have permission for.
c.f.: Twig string interpolation
You want:
% requirePermission("editSite:#currentSite.id") %
The way you have it now, the permission it's checking is the literal string editSite: (currentSite.id)
which no one will have permission for.
c.f.: Twig string interpolation
edited 3 hours ago
answered 3 hours ago
andrew.welchandrew.welch
8,4241224
8,4241224
add a comment |
add a comment |
Aron15 is a new contributor. Be nice, and check out our Code of Conduct.
Aron15 is a new contributor. Be nice, and check out our Code of Conduct.
Aron15 is a new contributor. Be nice, and check out our Code of Conduct.
Aron15 is a new contributor. Be nice, and check out our Code of Conduct.
Thanks for contributing an answer to Craft CMS Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fcraftcms.stackexchange.com%2fquestions%2f30125%2frequirepermission-not-working%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown