Uploaded image for project: 'OpenOLAT'
  1. OpenOLAT
  2. OO-376

Make group coaches only see and search for administrative user properties when user has also role author or above, hide username for normal users

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 8.2
    • Component/s: Group
    • Labels:
      None

      Description

      In the group members can see the members list (if configured). In the group admin section, the group coach/owner has the list of users in the user management and he can search for users based on user properties. Both lists and the search can be configured using the user properties configuration.

      In the user properties configuration, fields (eg. the email address) can be configured to be visible/searchable only administrative personnel. The problem here is, that just being the group coach/owner does not qualify to be treated as such higher privileged person because every student can create a group and become a group coach/owner.

      Thus, only group coach/owners are treated as administrative people regarding the user properties that do also have the author, user management, group management or administrator role. For such users, in the group members list and the group user administration the user properties for administrative users are used, for all other users the normal user properties are used.

      The same applies also to the user and group management in courses. Wherever users can search for and view users list form, the administrative user property configuration must be based on the new configuration.

      In addition, the the username is only shown in the group listings for users the administrative user roles configured. In prior releases the list configuration was disabled to hide some fields. This is not necessary, users can configure the list, but the user properties must be declared as administrative as desired. Thus, the user properties configuration for the context org.olat.admin.securitygroup.gui.IdentitiesOfGroupTableDataModel in userPropertiesContext.xml has also be changed.

      Configuration olat.properties

      #which roles see the administrative user properties
      usersearch.adminProps.users=disabled
      usersearch.adminProps.authors=enabled
      usersearch.adminProps.usermanagers=enabled
      usersearch.adminProps.groupmanagers=enabled
      usersearch.adminProps.administrators=enabled
      

        Attachments

          Activity

            People

            Assignee:
            srosse Stéphane Rossé
            Reporter:
            gnaegi Florian Gnägi
            Tester:
            Florian Gnägi
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 4 hours Original Estimate - 4 hours
                4h
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 4 hours, 30 minutes
                4h 30m