1 user.module user_role_change_permissions($role_name, array $permissions = array())

Change permissions for a user role.

This function may be used to grant and revoke multiple permissions at once. For example, when a form exposes checkboxes to configure permissions for a role, the form submit handler may directly pass the submitted values for the checkboxes form element to this function.


string $role_name: The name of a user role to alter.

array $permissions: An associative array, where the key holds the permission name and the value determines whether to grant or revoke that permission. Any value that evaluates to TRUE will cause the permission to be granted. Any value that evaluates to FALSE will cause the permission to be revoked.

      'administer nodes' => 0,                // Revoke 'administer nodes'
      'administer blocks' => FALSE,           // Revoke 'administer blocks'
      'access user profiles' => 1,            // Grant 'access user profiles'
      'access content' => TRUE,               // Grant 'access content'
      'access comments' => 'access comments', // Grant 'access comments'

Existing permissions are not changed, unless specified in $permissions.

See also




core/modules/user/user.module, line 2729
Enables the user registration and login system.


function user_role_change_permissions($role_name, array $permissions = array()) {
  // Grant new permissions for the role.
  $grant = array_filter($permissions);
  if (!empty($grant)) {
    user_role_grant_permissions($role_name, array_keys($grant));
  // Revoke permissions for the role.
  $revoke = array_diff_assoc($permissions, $grant);
  if (!empty($revoke)) {
    user_role_revoke_permissions($role_name, array_keys($revoke));