[SAK-39888] support for lite administration role - Sakai

XML

Word

Printable

Details

Type: (Deprecated) Contributed Patch
Status: CLOSED
Priority: Major
Resolution: Won't Fix
Affects Version/s: None
Fix Version/s: None
Component/s: Kernel
Labels:
- API

Previous Issue Keys:
KNL-708

Description

There has been request for "providing an effective sub- or lite-administrative role that does not include full admin access" (~~SAK-7813~~, ~~SAK-20412~~, etc.)

Currently, there is only one set of functions to check admin user privilege (isSuperUser() and isSuperUser(String)). And those functions are used all over existing Sakai code to bypass context-related security checks.

We propose two new functions as to support levels of admin users (isSuperAdminUser() and isSuperAdminUser(String)) and changes to implementation so that the new isSuperAdminUsers would return true for the current "full-range administrators" and isSuperUsers would return true for both "full-range administrators" and "lite admins".

With the support of the above new functions, a new "AdminLite" tool has been implemented to use by those lite admin users (UMICH-232). The tool is a combination of legacy Admin Sites tool, Realms tool, Users tool and Become Users tool, but in a much function-lite version

Gliffy Diagrams

Zeplin

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Attachments

KNL-708.patch
8 kB
18-Apr-2011 11:59

Issue Links

is depended on by

SAK-20412 Offer solution for delegated support and administration

RESOLVED

Activity

People

Assignee:: KERNEL TEAM (Inactive)

Reporter:: Zhen Qian

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 14-Apr-2011 10:27

Updated:: 25-Apr-2018 15:35

Resolved:: 20-Apr-2011 05:17

Details

Description

Gliffy Diagrams

Zeplin

Attachments

Attachments

Issue Links

Activity

People

Dates

Git Integration