...
| Note |
|---|
We structure the permissions definitions in terms of questions to be answered. The permissions below are what we are actually implementing in the code right now. |
Who can see a wall post?
- the author
- if the wall is connected to a group, then:
- all the people in the group
- if "content is available to parent groups" is enabled in the group settings ,then:
- all the people in all the parent group(s)
- if the wall is my personal wall, then:
- if the user profile visiblity is set to:
...
- everyone
...
- any user who is a registered user
...
- any member of any community the user is also a member of
...
- users who are connected to the user
...
Wall
Permissions are for the wall itself, not the wall posts. If the user has permission on the wall, they have the permission on all the wall posts too.
| Wall Context | Condition | create post | comment on post | read | edit | moderate | delete | admin | |
|---|---|---|---|---|---|---|---|---|---|
| User | always | user | |||||||
| if profile visibility "public" | everyone | ||||||||
| if profile visibility "registered users" | registered users | ||||||||
| if profile visibility "communities" | communities of user | ||||||||
| if profile visibility "connected users" | users connections | ||||||||
| if profile visibility "private" | |||||||||
| Group | always | members | |||||||
| if "is_content_included_in_parent" on group | members of all parents |
Not represented things
- if the wall is for a team, and the team is for a group, and that group has another team with "<some kind of special super admin>" permission, then:
- TBC