Roles & Permissions
| # | Permission | Authenticated | NSO Admin | Editor | Contributor | Teacher | Student | User | Notes |
|---|---|---|---|---|---|---|---|---|---|
| 1 | Skip comment approval | No | Yes | Yes | No | No | No | No | This would have meant any registered user could post comments without moderation. We probably only want trusted roles to do this. |
| 2 | Edit own comments | Yes | n/a | n/a | n/a | n/a | n/a | n/a | I don't see why you wouldn't let all registered users edit their own comments. |
| 3 | Use advanced search | No | No | No | No | No | No | No | We don't want to enable the advanced search on this site. |
| 4 | Select any shortcut set | Yes | n/a | n/a | n/a | n/a | n/a | n/a | We use this feature in the footer, at the moment, then we should enable this for all registered users. We will test this and see if it's useful. |
| 5 | Edit current shortcut set | Yes | n/a | n/a | n/a | n/a | n/a | n/a | Can most users use the shortcuts without these options selected? |
| 6 | Change own username | No | Yes | Yes | Yes | Yes | No | Yes | The teacher should keep control of the student usernames. |
| 7 | View user profiles | No | Yes | Yes | No | No | No | No | We don't want users communicating in any un-moderated way. |
| 8 | Content Type: Create New | No | Yes | Yes | No | No | No | No | IOM Gallery Submissions may be an exception for T to U |
| 9 | Content Type: Edit Own | No | Yes | Yes | No | No | No | No | IOM Gallery Submissions may be an exception for T to U |
| 10 | Content Type: Edit Any | No | Yes | No | No | No | No | No | |
| 11 | Content Type: Delete Own | No | Yes | Yes | No | No | No | No | IOM Gallery Submissions may be an exception for T to U |
| 12 | Content Type: Delete Any | No | Yes | No | No | No | No | No | |
| 13 |
This is not a full list, just those with questions or example sets.
Changes to DEFAULT Permissions
| Role | Permission Name | Change | Notes |
Questions
| Role | Permission Name | Default | Notes |
| Contributor | ? | ? | How does someone edit a page without creating it first? |
| Teacher | Skip comment approval | No | The current site allows teachers to post without approval. |
Notes:
All site members belong to the authenticated user role; consequently, any permission granted to the authenticated user role is given to every site member.
The rights assigned to user roles are cumulative; therefore, if a single user is assigned to multiple roles, that user has the accumulated permissions of all roles.
It might be easier to go to the permissions page and assign there
We might need to reduce the nsoadmin permissions, they are very similiar to admin at the moment.