CRM-12499 - Allow users with 'access user profiles' access to userRecordUrl

---------------------------------------- * CRM-12499: Allow users with 'access user profiles' to access $userRecordUrl http://issues.civicrm.org/jira/browse/CRM-12499

CRM-12499 - Allow users with 'access user profiles' access to userRecordUrl
ccd74e76 · totten · cc222cb6 · ccd74e76 · ccd74e76 · ccd74e76
Commit ccd74e76 authored 11 years ago by totten
--- a/CRM/Contact/Page/View.php
+++ b/CRM/Contact/Page/View.php
@@ -340,14 +340,14 @@ class CRM_Contact_Page_View extends CRM_Core_Page {
   * Add urls for display in the actions menu
   */
  static function addUrls(&$obj, $cid) {
+    // TODO rewrite without so many hard-coded CMS bits; use abstractions like CRM_Core_Permission::check('cms:...') and CRM_Utils_System
+
    $config = CRM_Core_Config::singleton();
    $session = CRM_Core_Session::singleton();
    $uid = CRM_Core_BAO_UFMatch::getUFId($cid);
    if ($uid) {
-      // To do: we should also allow drupal users with CRM_Core_Permission::check( 'view user profiles' ) true to access $userRecordUrl
-      // but this is currently returning false regardless of permission set for the role. dgg
      if ($config->userSystem->is_drupal == '1' &&
-        ($session->get('userID') == $cid || CRM_Core_Permission::check('administer users'))
+        ($session->get('userID') == $cid || CRM_Core_Permission::checkAnyPerm(array('cms:administer users', 'cms:view user account')))
      ) {
        $userRecordUrl = CRM_Utils_System::url('user/' . $uid);
      }

--- a/CRM/Core/Permission/Drupal.php
+++ b/CRM/Core/Permission/Drupal.php
@@ -73,6 +73,7 @@ class CRM_Core_Permission_Drupal extends CRM_Core_Permission_DrupalBase{
  function check($str, $contactID = NULL) {
    $str = $this->translatePermission($str, 'Drupal', array(
      'view user account' => 'access user profiles',
+      'administer users' => 'administer users',
    ));
    if ($str == CRM_Core_Permission::ALWAYS_DENY_PERMISSION) {
      return FALSE;

--- a/CRM/Core/Permission/Drupal6.php
+++ b/CRM/Core/Permission/Drupal6.php
@@ -72,6 +72,7 @@ class CRM_Core_Permission_Drupal6 extends CRM_Core_Permission_DrupalBase {
  function check($str, $contactID = NULL) {
    $str = $this->translatePermission($str, 'Drupal6', array(
      'view user account' => 'access user profiles',
+      'administer users' => 'administer users',
    ));
    if ($str == CRM_Core_Permission::ALWAYS_DENY_PERMISSION) {
      return FALSE;