Problem/Motivation
Currently it's only possible to delete a file entity by the owner of an file entity. There is no additional condition defined for any permission or even an exception for user/1 (main admin user).
Proposed resolution
- Use existing permission to delete file entities.
- And maybe define an exception for user/1 to delete file entities like other entities.
- Add a new permission to
delete any files(implemented in #45).
Remaining tasks
Direction, Decision, Patch.
User interface changes
TBD
API changes
TBD
Data model changes
None expected.
Original Issue summary:
I've faced with problem when user with id '1' (main admin user) can't delete file entities created by another user. I used view_bulk_operations for deleting file entities. I thought user 1 has absolute access to all entities.