The problem:
I was thinking of how to handle a site with many users and several story editors and user admins.
Lets say it is a small sports club and there is me, the technical root admin, there is 1 chief editor (story and user admin), 5 general editors (story admins), 1 treasurer (user admin), 200 known members of the club (group-football), 2000 fans (group-fans).
A) What are the most dangerous things admins can do (accidentally)? It is less a matter of faith it is rather accounts being hacked or unexperienced admins doing wrong steps.
- Deleting topics is most dangerous as they also delete all the stories.
- Mass deleting users could be a massive problem too.
Anything else that is not repairable?
There is alsready the config variable "onlyrootfeatures". What do you think of the possible settings only root may batchdelete users or delete topics?
Would the best solution be to make user.mass.delete and topic.delete separate rights?
There is a feature request [#563] "topic.delete should be a separate right" .
http://project.geeklog.net/tracker/index.php?func=detail&aid=563&group_id=6&atid=108
I noticed that user admins cannot add a user to a goup say "group-football" if they are not group admins. I don`t really want to make the user admin also group admin. Is there a chance to give user admins the right to add or delete users to groups but not be group managers? I think this is quite logical, isn`t it?
C) Unfortunately all email notifications go to the root admin. This should be routable to the various admins.
I was thinking of how to handle a site with many users and several story editors and user admins.
Lets say it is a small sports club and there is me, the technical root admin, there is 1 chief editor (story and user admin), 5 general editors (story admins), 1 treasurer (user admin), 200 known members of the club (group-football), 2000 fans (group-fans).
A) What are the most dangerous things admins can do (accidentally)? It is less a matter of faith it is rather accounts being hacked or unexperienced admins doing wrong steps.
- Deleting topics is most dangerous as they also delete all the stories.
- Mass deleting users could be a massive problem too.
Anything else that is not repairable?
There is alsready the config variable "onlyrootfeatures". What do you think of the possible settings only root may batchdelete users or delete topics?
Would the best solution be to make user.mass.delete and topic.delete separate rights?
There is a feature request [#563] "topic.delete should be a separate right" .
http://project.geeklog.net/tracker/index.php?func=detail&aid=563&group_id=6&atid=108
I noticed that user admins cannot add a user to a goup say "group-football" if they are not group admins. I don`t really want to make the user admin also group admin. Is there a chance to give user admins the right to add or delete users to groups but not be group managers? I think this is quite logical, isn`t it?C) Unfortunately all email notifications go to the root admin. This should be routable to the various admins.