Forums / Developer / Bypass file download permissions check

"Please Note:

At the specific request of Ibexa we are changing this projects name to "Exponential" or "Exponential (CMS)" effective as of August, 11th 2025.
This project is not associated with the original eZ Publish software or its original developer, eZ Systems or Ibexa".

Bypass file download permissions check

Previous topic

Developer

Next topic

Author	Message
Brendan Pike	Monday 16 February 2009 9:59:16 pm Although it seems unlikely I am hoping there is some way to pass or create a download link from templates that allows policies to be bypass file download permission checks a little like fetch 'limitation', array(). I don't wish to give users read access to this entire class, but would love it if I could apply class attribute level permissions. Since this isn't possible in Exponential without hacks can anyone suggest ant work-arounds? Thanks www.dbinformatics.com.au We are always interested in hearing from experienced eZ PHP programmers and eZ template designers interested in contract work.
Kristof Coomans	Tuesday 17 February 2009 12:11:35 am Hi Brendan, You can create a new module/view, similar to content/dowload (see kernel/content/download.php), that doesn't check any policies for certain content classes. independent eZ Publish developer and service provider \| http://blog.coomanskristof.be \| http://ezpedia.org
Brendan Pike	Tuesday 17 February 2009 5:53:30 pm Thanks Kristof I suspected it would require an extension, could be an opportunity for me to learn how to create a basic extension. :) Cheers www.dbinformatics.com.au We are always interested in hearing from experienced eZ PHP programmers and eZ template designers interested in contract work.

Author

Message

Brendan Pike

Monday 16 February 2009 9:59:16 pm

Although it seems unlikely I am hoping there is some way to pass or create a download link from templates that allows policies to be bypass file download permission checks a little like fetch 'limitation', array().

I don't wish to give users read access to this entire class, but would love it if I could apply class attribute level permissions. Since this isn't possible in Exponential without hacks can anyone suggest ant work-arounds?

Thanks

www.dbinformatics.com.au

We are always interested in hearing from experienced eZ PHP programmers and eZ template designers interested in contract work.

Kristof Coomans

Tuesday 17 February 2009 12:11:35 am

Hi Brendan,

You can create a new module/view, similar to content/dowload (see kernel/content/download.php), that doesn't check any policies for certain content classes.

independent eZ Publish developer and service provider | http://blog.coomanskristof.be | http://ezpedia.org

Brendan Pike

Tuesday 17 February 2009 5:53:30 pm

Thanks Kristof

I suspected it would require an extension, could be an opportunity for me to learn how to create a basic extension. :)

Cheers

www.dbinformatics.com.au

We are always interested in hearing from experienced eZ PHP programmers and eZ template designers interested in contract work.