Note: The D7 1.3 port is in the branch DRUPAL-7--1. Version 2 is being released under the name Total Access - https://github.com/chadcf/Total-Access

Node Access Module

This module allows you to manage permissions for nodes by role and user. In other words,
it implements per node access control for users and groups. With this module, you can
restrict access to any individual node without having to use taxonomy. You can assign 
permission to view, edit or delete each individual node by user or role. Once enabled,
a 'grant' tab will appear on node pages. You can click this and assign permissions for 
that node.

WARNINGS!

This module has been used mainly by me and has not been thoroughly tested. Using it on a
production system is probably not a good idea! With that said, I've been using it in a 
production environment for several months and have not had any problems, but use at your
own risk.

INSTALLATION:

Put the module in your drupal modules directory and enable it in admin/modules.

NOTE: This installs the module but it is not yet active.

To enable the module, visit admin/settings/nodeaccess. In order for this module to work,
the default drupal permission (which allows anyone to view any node) has to be deleted. To
do this, check the Enable box on the admin page. Note that if you have already installed
an access control module which performed this task, this may already be checked.

To return to normal drupal permissions, uncheck the enable box and submit the form.

IMPORTANT!

Once you check the enable box and submit the page, no nodes will be accessible to anyone
other than the admin user. You just set permissions on the nodeaccess settings page 
(admin/settings/nodeaccess) to enable access to your site.

The settings page has a section for roles, and then a section for every node type you 
have on your site.

ALLOWED ROLES:

The allowed roles section allows you to choose what roles will appear on the node grant
tab. Just check each role you want to appear. Note that you can still set defaults for
all roles as the admin user, these options just hide what is available on each node
page.

NODE TYPE SETTINGS:

For each node type on your site, you can set default role access permissions and choose
if the grant tab should be available on that page. If the show grant tab option is 
not checked, the grant tab will not appear on the node page regardless of user permissions.

For each node type, you can also choose the default permissions for that type. To emulate 
standard drupal permissions, you would give anonymous user and authenticated user view permissions
for each node type. Note that once this module is first enabled, no permissions are granted, so
it is important to set defaults.

The default permissions for each node type will apply to any node which does not have
permissions set, either at the time you submit the settings or when any new node is
created. For already existing nodes, the defaults will apply only to those nodes which
have not had custom permissions set on the node grants tab. 

TIPS:

If you grant authenticated users edit permission, you cannot revoke that for any user
who is a member of authenticated users. For example, if you wanted all users to be able
to edit a node except for one user, you cannot do this by granted edit permission to 
authenticated users, then adding the user to the node without view permissions. Drupal
doesn't let you do that.

As with other access control modules, this doesn't play nicely with multiple access control
modules. Apparently this will be fixed with drupal 5.0, but in the meantime you're stuck. 

If you deactivate/uninstall, the old entries in the node_access table stick around. I'm not sure
if this will cause problems... If you want to get rid of it for good, make sure you run the
following query:

delete from node_access where realm = 'nodeaccess_rid' OR realm = 'nodeaccess_uid';