Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Privileges refactor #5736

Open
pitaj opened this issue Jun 3, 2017 · 8 comments
Open

Privileges refactor #5736

pitaj opened this issue Jun 3, 2017 · 8 comments
Labels

Comments

@pitaj
Copy link
Contributor

@pitaj pitaj commented Jun 3, 2017

  • Create a centralized privileges interface (by group / by user instead of by category)
  • Add deny privileges that override allow privileges
  • Split up moderation permissions
    • Global account info access
    • Global user sessions access
    • Edit history
    • Editing other's posts
    • Locking topics
    • View removed posts
    • Deleting posts / topics
    • Banning
  • Add global privileges
  • Change global moderators to a default group with by default global moderation permissions
  • ? switch to not using groups for storing permissions ?

This would cover #5569, some of #3914, and could cover #4652 and #5127 as well.

@pitaj pitaj added the enhancement label Jun 3, 2017
@ELadner

This comment has been minimized.

Copy link

@ELadner ELadner commented Jul 13, 2017

Could it be possible with this scheme to create a category where users can't see other users topics but can create a topic and always view their own topic?

Like a support forum where users may have sensitive issues. Other users don't need to see the topic, but the user that creates it can interact with the support team that can read the whole category.

@julianlam

This comment has been minimized.

Copy link
Member

@julianlam julianlam commented Jul 13, 2017

No, that is too obscure a use case to condition for, I think. Traditionally we've opted to do this via third party plugins.

nodebb-plugin-support-forum being the one you're looking for.

@dangerusslee

This comment has been minimized.

Copy link

@dangerusslee dangerusslee commented Sep 27, 2017

I would be interested in the ability to give groups certain admin privileges - like managing categories for instance.

@irlcatgirl

This comment has been minimized.

Copy link

@irlcatgirl irlcatgirl commented Sep 27, 2017

I would like to be able to set global mods to have soft delete only and never purge. It avoids a lot of issues in the event of a mods account getting hacked (restoring backups suck!).

@aStonedPenguin

This comment has been minimized.

Copy link
Contributor

@aStonedPenguin aStonedPenguin commented Nov 9, 2017

@julianlam No notable forum software doesn't allow you to give groups fine tuned permissions. Shortsighted decisions like that seriously hold NodeBB back from widespread use.

@julianlam

This comment has been minimized.

Copy link
Member

@julianlam julianlam commented Aug 29, 2018

For what it's worth, a number of these changes have been implemented, with global privileges and purge now being a separate privilege no longer bundled with moderation.

@gaellelo

This comment has been minimized.

Copy link

@gaellelo gaellelo commented Jan 28, 2019

@julianlam does it mean that global moderators shouldn't be able to purge anymore?
If so how, cause with our setup, if they have moderation rights they can still purge for example.

@julianlam

This comment has been minimized.

Copy link
Member

@julianlam julianlam commented Jan 28, 2019

No, global moderators should still be able to purge.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
8 participants
You can’t perform that action at this time.