search

MachineVisionUiB / machinevision

We are developing a database to map and interpret the representations and uses of machine vision technologies in digital art, computer games and narratives such as science fiction novels, movies and creepypasta.
http://uib.no/en/machinevision
4 stars 0 forks source link

Information to hide from none logged in users #148

Open ghost opened 2 years ago

ghost commented 2 years ago

We currently expose all fields on nodes, terms, situations, drafts and so to none logged in users. Some of these fields are not useful to not logged in users and prob. should not be exposed.

Scope of issue

Figure out what fields should not be exposed to none logged in users. This req. filling out all fields in all content types and situations to flush them all out.

Fields to hide

Hide properties and other type of data that is not fields

original report

User can see both "record status" and "UUID" without logging in. It is probably a bug. unnamed (3)

steinmb commented 2 years ago

Care to enlighten us why you think it is a bug?

ragsol commented 2 years ago

UUID we've talked about before, it's just a thing that's there and we have to accept =) Record status should be hidden for non-logged in viewers now (in my opinion), because everything is "good to go". The notes are handy to be open about, but I guess that depends on what people have been writing there... =) @jilltxt @mareinna @LindaKairus ?

steinmb commented 2 years ago

This enable us to configure field permissions:

commit MachineVisionUiB/machinevision_config@9f438cafe33a0e846855605dd24f29c7bdc5adaa (HEAD -> master, origin/master, origin/HEAD) Author: Stein Magne Bjorklund steinmb@smbjorklund.com Date: Thu Nov 11 14:11:39 2021 +0100

New module drupal/field_permissions

Allow us to define field based permissions to
fields we dont want to be public.
jilltxt commented 2 years ago

What's the status on this?