From eb91cee05c61c51e90852562529f0f69499d7c70 Mon Sep 17 00:00:00 2001 From: Brayan Ceron Date: Mon, 27 Apr 2026 17:54:33 -0500 Subject: [PATCH] feat: add advanced settings view permission for course roles --- openedx_authz/constants/permissions.py | 5 +++++ openedx_authz/constants/roles.py | 3 +++ openedx_authz/engine/config/authz.policy | 2 ++ 3 files changed, 10 insertions(+) diff --git a/openedx_authz/constants/permissions.py b/openedx_authz/constants/permissions.py index ed1ba42c..f9f64a59 100644 --- a/openedx_authz/constants/permissions.py +++ b/openedx_authz/constants/permissions.py @@ -168,6 +168,11 @@ effect="allow", ) +COURSES_VIEW_ADVANCED_SETTINGS = PermissionData( + action=ActionData(external_key=f"{COURSES_NAMESPACE}.view_advanced_settings"), + effect="allow", +) + COURSES_MANAGE_CERTIFICATES = PermissionData( action=ActionData(external_key=f"{COURSES_NAMESPACE}.manage_certificates"), effect="allow", diff --git a/openedx_authz/constants/roles.py b/openedx_authz/constants/roles.py index 99badb03..64b2510d 100644 --- a/openedx_authz/constants/roles.py +++ b/openedx_authz/constants/roles.py @@ -69,6 +69,7 @@ permissions.COURSES_VIEW_CHECKLISTS, permissions.COURSES_VIEW_COURSE_TEAM, permissions.COURSES_VIEW_SCHEDULE_AND_DETAILS, + permissions.COURSES_VIEW_ADVANCED_SETTINGS, ] COURSE_AUDITOR = RoleData(external_key="course_auditor", permissions=COURSE_AUDITOR_PERMISSIONS) @@ -82,6 +83,7 @@ permissions.COURSES_VIEW_CHECKLISTS, permissions.COURSES_VIEW_COURSE_TEAM, permissions.COURSES_VIEW_SCHEDULE_AND_DETAILS, + permissions.COURSES_VIEW_ADVANCED_SETTINGS, permissions.COURSES_EDIT_COURSE_CONTENT, permissions.COURSES_MANAGE_LIBRARY_UPDATES, permissions.COURSES_MANAGE_COURSE_UPDATES, @@ -92,6 +94,7 @@ permissions.COURSES_MANAGE_GROUP_CONFIGURATIONS, permissions.COURSES_EDIT_DETAILS, permissions.COURSES_MANAGE_TAGS, + permissions.COURSES_MANAGE_ADVANCED_SETTINGS, ] COURSE_EDITOR = RoleData(external_key="course_editor", permissions=COURSE_EDITOR_PERMISSIONS) diff --git a/openedx_authz/engine/config/authz.policy b/openedx_authz/engine/config/authz.policy index 4dfb3d1b..aaa96885 100644 --- a/openedx_authz/engine/config/authz.policy +++ b/openedx_authz/engine/config/authz.policy @@ -81,6 +81,7 @@ p, role^course_auditor, act^courses.view_grading_settings, course-v1^*, allow p, role^course_auditor, act^courses.view_checklists, course-v1^*, allow p, role^course_auditor, act^courses.view_course_team, course-v1^*, allow p, role^course_auditor, act^courses.view_schedule_and_details, course-v1^*, allow +p, role^course_auditor, act^courses.view_advanced_settings, course-v1^*, allow # Course Editor Role Policies p, role^course_editor, act^courses.view_course, course-v1^*, allow @@ -101,6 +102,7 @@ p, role^course_editor, act^courses.edit_grading_settings, course-v1^*, allow p, role^course_editor, act^courses.manage_group_configurations, course-v1^*, allow p, role^course_editor, act^courses.edit_details, course-v1^*, allow p, role^course_editor, act^courses.manage_tags, course-v1^*, allow +p, role^course_editor, act^courses.manage_advanced_settings, course-v1^*, allow # Course Staff Role Policies p, role^course_staff, act^courses.legacy_staff_role_permissions, course-v1^*, allow