Give Explicit Attachment Viewing Permissions?

Jaxel

Jaxel

Well-known member
Okay... I have my XenPorta mod:
http://www.8wayrun.com/portal/

I also have attachments, that are viewable by registered users. Attachments are NOT viewable by unregistered/unverified users. I would like to keep attachments not viewable by unregistered/unverified.

However, on the portal, and only the portal, I want to explicitly give attachment viewing permissions to everyone. So that if I use the ATTACH bbcode to embed an attached image to an item, that attachment is viewable by everyone who views the portal page, even if they aren't logged in,
 
I haven't looked closely at the code behind it; but I don't think it's a trivial task. The attachments are viewed and embedded using this url format: /attachments/title.id/. When you access an attachment, the controller doesn't know from where it was embedded or accessed. So it's a bit hard to selectively grant permissions that way.

When accessing an attachment, you can fetch the posts displayed on your portal and the associated attachments. Then do a check if the attachment being accessed is in your list. But then, I don't think it's a good idea to have such a huge performance overhead.
 
You must log in or register to reply here.

Similar threads

B
XF 2.1 Parsing attachment
Replies
0
Views
617
BenGe89
B
Sonnie
XF 2 Looking for trustworthy tech to upgrade forum and add-ons.
Replies
9
Views
3K
Alpha1
Alpha1
RobinHood
Sax Bandits - Case study using XenForo to create a private membership only community
2
Replies
23
Views
4K
RobinHood
RobinHood
Nulumia
Add-on A Look At The Upcoming Public Release of SEO & Index Tools
2 3
Replies
46
Views
10K
Forsaken
Forsaken
Serpius
Permissions Assistance On My New Website
Replies
1
Views
719
ForumCube
ForumCube
Top Bottom