openintranet_access

Overview

Open Intranet Access provides group-based access control for the Open Intranet distribution. It allows administrators to restrict access to content (nodes, documents, folders) based on group membership or individual user assignments.

Features

• Hierarchical Groups - Create organizational structure with parent/child groups (e.g., Company → Office → Department)
• Group Membership - Assign users to one or more groups
• Content Restrictions - Restrict access to nodes, OI Documents, and OI Folders
• Inherited Access - Users in child groups automatically have access to parent-restricted content
• Direct User Access - Grant access to individual users regardless of group membership
• Audit Trail - Track all access changes in Drupal's watchdog log
• Admin UI - Manage groups and memberships from /admin/people/oi-groups

Integration

This module integrates with:

• Open Intranet Documents - Adds "Manage access" link and entity-level access control
• Drupal's node access system - Uses hook_node_grants() and hook_node_access_records()

How it works

1. Create groups representing your organizational structure
2. Add users to appropriate groups
3. On any node, document, or folder, use the "Access" tab to select which groups/users can view the content
4. Users not in the selected groups (or their child groups) will see "Access denied"

Requirements

• Drupal 10.3+ or Drupal 11
• PHP 8.1+

Related Projects

• Open Intranet - The main distribution
• Open Intranet Documents - Document management module

Development

Development is sponsored by Droptica.

Issue queue: Report bugs and feature requests