Rowan Collins wrote:
Actually each
group need to be assigned every needed rights. There is
nothing like inheritance / cumulation. So one have to:
Anonymous = permission(read)
LoggedIn = permission(read, write)
Sysop = permission(read, write, delete)
Bureaucrat = permission(makesysop)
This way bureaucrat account is only to make sysop.
Actually, I think this is probably like my "cumulative" approach, I
just didn't explain it very well; what I meant is that if a user is
assigned to two groups, they will gain both sets of rights:
* User:A has group "Sysop" -> permission(read, write, delete)
* User:B has groups "Sysop", "Bureaucrat" -> permission(read,
write,
delete) + permission(makesysop)
Yup user are assigned to several groups then rights get ORed (so its
cumulative).
Or do you mean that a bureaucrat would actually need
to log out and
then log in with a different account which could make sysops but not
edit pages?
LoggedIn group is a build-in group so every users are assigned its
permission. In the above example, Bureaucrat will be able to read and
write. Rights for the Sysop group could just have been permission(delete).
By the way, any chance that while we're
redesigning we can be
consistent with terminology and get rid of this "An Administrator is
someone with Sysop status" nonsense in favour of just calling the
status flag "Admin"? [I know, this isn't as uncontroversial as I'm
making out, it's just a personal bug-bear]
Actually my groups are:
Anonymous (read)
LoggedIn (read, write)
Sysops (read, write, move, delete)
Bureaucrat (read, write, move, makesysop)
LeetAdmin (everything you can imagine)
So sysops and bureaucrat are both childs of LoggedIn, still they are
differents :o) As for the name, group names can be edited.
I believe there will be a lot of changes once the other developpers can
have a look at it :o)
--
Ashar Voultoiz - WP++++
http://en.wikipedia.org/wiki/User:Hashar