Matt, that's a great solution. Thanks! J.<div><br clear="all">--Jim<br>--<br>My IM and Skype details are at <a href="http://state68.com/contact">http://state68.com/contact</a><br>
<br><br><div class="gmail_quote">On 9 August 2010 18:54, Matt Chapman <span dir="ltr"><<a href="mailto:matt@ninjitsuweb.com">matt@ninjitsuweb.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Ah ha. I see what you're going for.<br>
<br>
My personal approach is to try to never give users a level of access<br>
where they might break the site, even accidentally. But that does<br>
often require additional work that I realize is not always practical,<br>
if you're dealing with limited time or budgets.<br>
<br>
If Domenic doesn't persuade you, and you're still going to go to the<br>
point of creating a custom module, may I suggest that you require<br>
users to re-enter their OWN password, rather than sharing the user 1<br>
password with every one? Really, you're asking for trouble by sharing<br>
that password with anyone who doesn't absolutely need it.<br>
<div class="im"><br>
All the Best,<br>
<br>
Matt Chapman<br>
Ninjitsu Web Development<br>
ph: 818-660-6465 (818-660-NINJA)<br>
fx: 888-702-3095<br>
<br>
--<br>
The contents of this message should be assumed to be Confidential, and<br>
may not be disclosed without permission of the sender.<br>
<br>
<br>
<br>
</div>On Mon, Aug 9, 2010 at 10:39 AM, James Benstead<br>
<div><div></div><div class="h5"><<a href="mailto:james.benstead@gmail.com">james.benstead@gmail.com</a>> wrote:<br>
> Hi Matt,<br>
> It's "deliberate inconvenience" if you like. The site will have a manager<br>
> who will, through their regular account, be able to upload and manage<br>
> content, process Ubercart orders, etc. I'd like them to quickly be able to<br>
> switch to the root account for more technical (and therefore dangerous)<br>
> tasks. The act of entering a password will give them the sense that what<br>
> they are doing implies a risk. Also, the root account will have a slightly<br>
> different theme. Possibly plastered with skull and crossbone motifs ;)<br>
> --Jim<br>
> --<br>
> My IM and Skype details are at <a href="http://state68.com/contact" target="_blank">http://state68.com/contact</a><br>
><br>
><br>
> On 9 August 2010 18:33, Matt Chapman <<a href="mailto:matt@ninjitsuweb.com">matt@ninjitsuweb.com</a>> wrote:<br>
>><br>
>> Hi James,<br>
>><br>
>> I curious about your reasoning for requiring a password? It seems like<br>
>> an example of "security" that only inconveniences the legitimate<br>
>> users.<br>
>><br>
>> Both the modules mentioned provide an explicit permission to switch,<br>
>> ensuring that only authorized users have the capability, and both<br>
>> allow you to permit it without sharing a password that could be<br>
>> accidentally exposed to unauthorized users.<br>
>><br>
>> It seems to me your proposed module weakens security for no practical<br>
>> benefit. Am I missing something?<br>
>><br>
>> All the Best,<br>
>><br>
>> Matt Chapman<br>
>> Ninjitsu Web Development<br>
>> ph: 818-660-6465 (818-660-NINJA)<br>
>> fx: 888-702-3095<br>
>><br>
>> --<br>
>> The contents of this message should be assumed to be Confidential, and<br>
>> may not be disclosed without permission of the sender.<br>
>><br>
>><br>
>><br>
>> On Mon, Aug 9, 2010 at 9:48 AM, James Benstead <<a href="mailto:james.benstead@gmail.com">james.benstead@gmail.com</a>><br>
>> wrote:<br>
>> > Thanks - both of these modules solve half of the problem (i.e., the<br>
>> > switching part) - but neither seem to allow me to force the user to<br>
>> > enter<br>
>> > the root password in order to switch to the root account. Very useful,<br>
>> > though; two new questions:<br>
>> ><br>
>> > If I were to build a module that was dependent on either masquerade or<br>
>> > devel<br>
>> > switch user to provide the functionality I'm talking about, which module<br>
>> > would be the best foundation?<br>
>> > Is there a simple way I can mash-up this module with the regular user<br>
>> > module<br>
>> > to do this? I'm guessing there must be.<br>
>> ><br>
>> > Thanks again, guys; the best bit about Drupal (and the Drupal community)<br>
>> > is<br>
>> > not having to re-invent the wheel ;)<br>
>> > --Jim<br>
>> > --<br>
>> > My IM and Skype details are at <a href="http://state68.com/contact" target="_blank">http://state68.com/contact</a><br>
>> ><br>
>> > Paolo Mainardi:<br>
>> > <a href="http://drupal.org/project/masquerade" target="_blank">http://drupal.org/project/masquerade</a><br>
>> > On 9 August 2010 17:40, Pedro Faria de Miranda Pinto<br>
>> > <<a href="mailto:predofaria@gmail.com">predofaria@gmail.com</a>><br>
>> > wrote:<br>
>> >><br>
>> >> You can use devel module with switch user block<br>
>> >><br>
>> >> On Mon, Aug 9, 2010 at 1:35 PM, James Benstead<br>
>> >> <<a href="mailto:james.benstead@gmail.com">james.benstead@gmail.com</a>><br>
>> >> wrote:<br>
>> >>><br>
>> >>> I'm very interested in UI design, and mapping the design of Drupal<br>
>> >>> admin<br>
>> >>> interfaces to pre-existing, long-standing frameworks. I'm currently<br>
>> >>> looking<br>
>> >>> for a module that allows a "site manager" to quickly switch to and<br>
>> >>> from the<br>
>> >>> root user of a D6 site - in my mind's eye this module displays a block<br>
>> >>> with<br>
>> >>> a password field and a submit button; entering the root password and<br>
>> >>> hitting<br>
>> >>> the button is broadly equivalent to "sudo su" in Unix. Once the user<br>
>> >>> has<br>
>> >>> root privileges, a click on the "step down" button in the same block<br>
>> >>> returns<br>
>> >>> them to their saved regular session.<br>
>> >>> My question: does a module exists that does this, or gets close to<br>
>> >>> this?<br>
>> >>> Or is it possible to cobble together this functionality by using<br>
>> >>> existing<br>
>> >>> functionality in already-existing D6 modules?<br>
>> >>> Thanks,<br>
>> >>> --Jim<br>
>> >>> --<br>
>> >>> My IM and Skype details are at <a href="http://state68.com/contact" target="_blank">http://state68.com/contact</a><br>
>> >><br>
>> >><br>
>> >><br>
>> >> --<br>
>> >> Pedro Faria de Miranda Pinto<br>
>> >> <a href="http://www.eusouopedro.com" target="_blank">http://www.eusouopedro.com</a><br>
>> >> <a href="http://www.phpavancado.net" target="_blank">http://www.phpavancado.net</a><br>
>> ><br>
>> ><br>
><br>
><br>
</div></div></blockquote></div><br></div>