-
Bug
-
Resolution: Won't Do
-
Minor
-
None
-
2.0.4, 2.1, 2.2, 4.1
-
Any
-
MOODLE_20_STABLE, MOODLE_21_STABLE, MOODLE_22_STABLE, MOODLE_401_STABLE
-
-
I could reproduce this problem under every Moodle 2.x until now.
PROBLEM:
There is no way to hide courses from users' courses listing that would not remove their possibility to enter them if they are enrolled there.
It would be great to enable setting the courses as public/non-public from the course listing perspective. Also, creating a system-wide capability to provide or not the users to view only public courses, or all of them would be a great advance on access control. This could change the courses list and the courses search, returning only 'listable' courses for users, regarding the course setting and the user capability.
There is also the problem that a user should not be able to search courses in the platform, if he is not strictly able to do so. The print_course_search() method @ '<MOODLE_URL>/course/lib.php' should only return the course search field is the user has the capability to see them.
I set this as a possible security issue, as there are several Moodle sites where the users must see only the courses which he is enrolled to, or only the courses that as public for listing.