Aquesta pàgina forma part de la documentació de Moodle en català, tot i que no ha estat traduïda encara. Podeu contribuir obertament a les tasques de traducció. Podeu consultar la Guia d'edició de la documentació i també participar ens els debats del fòrum de traductors de la documentació a moodle.org

New permissions evaluation in 2.0

De MoodleDocs
Salta a:navegació, cerca
Main pageManaging a Moodle siteRoles and permissionsNew permissions evaluation in 2.0
Roles and permissions

Plantilla:Infobox Project

Plantilla:Moodle 2.0


Goals

The main goals are:

  1. replace current confusing permission evaluation
  2. improve performance
  3. enable improvements in permission overriding UI

Permission evaluation algorithm

  1. find all roles with given capability used in definition or override
  2. evaluate permissions in given context for each role separately (going from bottom to top in context tree, first found wins unless there is a CAP_PROHIBIT on any level)
  3. user has capability if he/she has at least one role which evaluated to CAP_ALLOW and at the same time no role which was evaluated to CAP_PROHIBIT

http://tracker.moodle.org/secure/attachment/19672/Allowed_roles.png

Performance improvements

has_capability() and get_users_by_capability() uses fixed number of queries. The result could be returned as sql query instead of database records.

Backwards compatibility

The only potential problem is CAP_PREVENT in overrides when user has several conflicting roles. Originally this was highlighted as a special feature, unfortunately it was in fact the major source of confusion.

See also

Obtingut de «https://docs.moodle.org/2x/ca/index.php?title=New_permissions_evaluation_in_2.0&oldid=73064»
Powered by MediaWiki