My friend Paul needs some Drupal help this weekend. His contact info is [address removed] , [masked] cell|
He sent me this email:
I'm willing to pay $100.
I've been totally stressed on the CHPS project, which hit a
(perceived) crisis. I've been at it for 15 days and am a little wired
for the moment, trying to drive myself to deploy to our beta server.
And our client found a big, gaping security hole and there's nothing in
all of Google to adequately answer my questions... how do I keep
people who are not members of a group from viewing, editing and
deleting its posts?
We are setting up an environmentally-safe Construction materials
registry, and we are using Drupal. The people who use the site will
post information about their product, and the claims about that product
which will be scrutinized by the people at SCScertified, and if
allowed, made searchable by the public who will be architects and
We want Users for each companyto safely post contact information,
product information, claims, make payment for the assessment. We are
using OG, and have OG user roles, and OG Content type, and they are
likely not configured correctly. When we put up a page with a product
and claims, there are category links that takes anyone to a page
listing all products, with edit and delete buttons.
We are opening our site to a new set of beta testers mid-next week, and it has to be intuitive, and secure, and working by then.
That's your spec. Know an expert who can help me solve this and other problems over the weekend?