Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-39627

"Browse list of users" should not require "user:update" permission

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Minor
    • Resolution: Unresolved
    • Affects Version/s: 2.2.7, 2.4.3, 2.5
    • Fix Version/s: FRONTEND
    • Component/s: Roles / Access
    • Labels:
    • Affected Branches:
      MOODLE_22_STABLE, MOODLE_24_STABLE, MOODLE_25_STABLE

      Description

      We have technical support personnel who need to be able to verify user accounts, enrollment, etc. without being able to edit accounts. However, it seems the only way to give them access to the "Browse list of users" menu item is to grant the "user:update" permission, which also allows them to edit user profiles, even if "user:editprofile" is specifically set to "Prevent." In the future, could these two permissions be separated?

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            emdalton1 Elizabeth Dalton
            Participants:
            Component watchers:
            Amaia Anabitarte, Carlos Escobedo, Ferran Recio, Sara Arjona (@sarjona)
            Votes:
            3 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated: