Details

    • Improvement
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 6.0.0
    • 6.1.0
    • Admin, Usability
    • None

    Description

      As the deployment of OM increases, it is needed to give specific admin rights to specific people. So why not putting the admin functions bellow as selection instead of ading only 'Admin' to the user 

      Attachments

        1. image-2020-12-29-16-49-27-748.png
          23 kB
          Ali Alhaidary

        Activity

          ali.alhaidary Ali Alhaidary added a comment -

          ali.alhaidary Ali Alhaidary added a comment -

          We already have `Group moderator` role
          who can admin Users/Rooms/Groups for specific group only
          I believe this should be enough for most cases

          It is possible to create 10 more roles, but then "Main" admin should add all of them to new admin which might be no user friendly ....

          solomax Maxim Solodovnik added a comment - We already have `Group moderator` role who can admin Users/Rooms/Groups for specific group only I believe this should be enough for most cases It is possible to create 10 more roles, but then "Main" admin should add all of them to new admin which might be no user friendly ....
          ali.alhaidary Ali Alhaidary added a comment - - edited

          Very much correct, and they are functioning as expected. Teachers and IAs are making good use of it.

          However, currently, we have three people with the task of managing translations only, so they must have 'admin' rights while they should not go even close to any other admin functionary.

          We have also two tech persons whom are following among other things configuration, mail and connections (we do not have LDAP) and we use database back up. They should not come to any user/group/room configuration, but they have 'admin' rights, so they can override user/room/group settings.

          Mistakes can happen, and when it does, we can only go to openmeetings.log to see what, when and who.

          Only if OM has logging interface that shows all activities, it will make life much easier and of course, that would be a separate privilege   

           

           

           

           

          ali.alhaidary Ali Alhaidary added a comment - - edited Very much correct, and they are functioning as expected. Teachers and IAs are making good use of it. However, currently, we have three people with the task of managing translations only, so they must have 'admin' rights while they should not go even close to any other admin functionary. We have also two tech persons whom are following among other things configuration, mail and connections (we do not have LDAP) and we use database back up. They should not come to any user/group/room configuration, but they have 'admin' rights, so they can override user/room/group settings. Mistakes can happen, and when it does, we can only go to openmeetings.log to see what, when and who. Only if OM has logging interface that shows all activities, it will make life much easier and of course, that would be a separate privilege             
          ali.alhaidary Ali Alhaidary added a comment -

          ping

          ali.alhaidary Ali Alhaidary added a comment - ping

          Commit 576f61c91bc784d18b0043ea0d31ad9d0373bef3 in openmeetings's branch refs/heads/master from Maxim Solodovnik
          [ https://gitbox.apache.org/repos/asf?p=openmeetings.git;h=576f61c ]

          OPENMEETINGS-2546 additional types of admins are added

          jira-bot ASF subversion and git services added a comment - Commit 576f61c91bc784d18b0043ea0d31ad9d0373bef3 in openmeetings's branch refs/heads/master from Maxim Solodovnik [ https://gitbox.apache.org/repos/asf?p=openmeetings.git;h=576f61c ] OPENMEETINGS-2546 additional types of admins are added

          Admin right is splitted
          please provide some feedback on usability of this implementation

          solomax Maxim Solodovnik added a comment - Admin right is splitted please provide some feedback on usability of this implementation
          ali.alhaidary Ali Alhaidary added a comment -

          Brilliant

          excellent

          Good job

          ali.alhaidary Ali Alhaidary added a comment - Brilliant excellent Good job

          Thanks
          I would appreciate if you can test negative scenarios as well
          i.e. user without correspondent permission tries to open some area (by URL)
          user with ADMIN (without suffix) has all permissions etc.

          solomax Maxim Solodovnik added a comment - Thanks I would appreciate if you can test negative scenarios as well i.e. user without correspondent permission tries to open some area (by URL) user with ADMIN (without suffix) has all permissions etc.
          ali.alhaidary Ali Alhaidary added a comment -

          Sure. We have already given (taken)  admin rights as needed to (from) people  and will ask them to do the testing.

          ali.alhaidary Ali Alhaidary added a comment - Sure. We have already given (taken)  admin rights as needed to (from) people  and will ask them to do the testing.

          People

            solomax Maxim Solodovnik
            ali.alhaidary Ali Alhaidary
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: