|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
I think UBBT 7.1 should have a SUPER ADMIN account. Sort of like Windows Active Directory has Enterprise Admin - it can stop or over rule, change normal Admin sort of.
It's great to believe that you can trust everyone, but the reality is you can't always do that. As I've said in other posts on other topics - UBBT needs much more granular security controls (imho).
As an example lets say that UBBT CP has 300 options available to an Administrator. I would like the SUPER ADMIN account to have an option on all of those that determines if a normal administrator can change it or not.
I realize it's more complex and would require some work, but in the long run as the software progresses and moves into other areas that I see people requesting it will be much more important. Especially when dealing with money transactions.
.
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
Well, we already have "Super Admin":
Control Panel » Primary Settings » Advanced Options » Main Administrator User Id? "This is considered your Super Admin. Other admins cannot edit or change this user. All welcome private messages will come from this user."
But you're right, having specific Admin Permissions (like Moderator Permissions) could be nice to fine-tune what some can/can't do. FWIW, though, I can't see needing more than 1-2 Admins anyway. The fewer number of people with CP control the better as far as I'm concerned!
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
The way I see things, a good set of permissions would be: 1. Admin, can do anything. 2. Global Moderator, can do anything a moderator can do, in every forum, kind of like a castrated admin. 3. Moderator, can move/edit/delete topics in their forums. 4. User, Can post
And I'd also like to chime, that I like the current way that moderators are able to do nothing in the control panel but approve posts in their forums, but I don't like that they can ban users from the board.
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
I don't like that they can ban users from the board. Can't you just uncheck the "Edit Users" box under each Mod's name to prevent that? I did that for ALL my Mods, but not sure if that prevents banning - tho I assume it would?
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
When did that get in there lol... I hvaen't played with the moderator system since initial alpha's, so i didn't even notice :x...
So, I liek the current system (thoughI'm still rooting for global moderators in a future version)
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Main Administrator User Id Yeah, well that's not quite the same as I'm asking, and it also happens to be the ID of the guy that owns the board so don't want to mess with that one either. Though I don't see that that account has any special rights that other Admins don't have as well. Via CP using MySQL commands an Admin can actually modify that user too I'm sure. Haven't tried it, but I'm betting they can. .
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Well we don't currently run moderator approval needed to post so I actually would like to prevent Moderators from even seeing the link for the CP.
Is there an option to do that?
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
The way I see things, a good set of permissions would be: 1. Admin, can do anything. 2. Global Moderator, can do anything a moderator can do, in every forum, kind of like a castrated admin. 3. Moderator, can move/edit/delete topics in their forums. 4. User, Can post
And I'd also like to chime, that I like the current way that moderators are able to do nothing in the control panel but approve posts in their forums, but I don't like that they can ban users from the board. Well dealing with a large site that is also taking in money transactions your idea is close, but not good enough for security. Small to Medium maybe, but a large site with thousands of posts a day and dealing with monetary transactions you have to have more than one Admin and he/she will need to be able to adjust certain things on the fly, but there are still things that you probably don't want "those" Admins to have rights to either. The DB Tools is one. I think only a Super Admin or what ever you want to call it should have access to those tools. .
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
Probably not, but if I'm not mistaken, even with the link to Control Panel, they will only see what they're entitled to. I'll have to "become" one of my Mods to double-check that, tho.
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
I think someone said it best, if you can't trust your staff, they shouldn't be staff...
A great example is something that happened on my forums.. i trusted this kid to monitor our Gaming section on our site, which was our largest and most popular section. One day he decided he didn't want to hang around anymore, so he deleted every single post that had ever been made by anyone in that section, and then left...
All in all, if you don't trust them to not fiddle with your forum settings, keep in mind what they do have access to fiddle with, then think, do you really trust them enough to give them THAT much access to your site?
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
Probably not, but if I'm not mistaken, even with the link to Control Panel, they will only see what they're entitled to. I'll have to "become" one of my Mods to double-check that, tho. You get an error like "You do not have permission to edit users." for trying to access the member edit screen if you don't have access to; which i think is one of the only pages mods have access to enter.
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Yes a new Moderator was looking around and they have little access to most stuff. But at least for us we currently have no need for them to even go in there period. I would just as soon prevent them from even seeing the CP link. Who knows for some it's like an inviting piece of candy they have to check on and might find something somewhere that was missed and they click it and screw something up.
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
As a temporary bandaid, you could rip it out for everyone by nuking this line in the header.tpl file (bookmark the link for access for you): {if $cp_link}
<a href="{$config.BASE_URL}/admin/index.php">{$lang.ADMIN_MENU}</a>
{/if}
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
ahh here we go, to remove the ability of mods to see the link: In libs/ubbthreads.inc.php Find: // Registered Links
if ($user['USER_MEMBERSHIP_LEVEL'] == "Administrator" || $user['USER_MEMBERSHIP_LEVEL'] == "Moderator") {
// Add CP link
$cp_link = 1;
} // end if
Replace: // Registered Links
if ($user['USER_MEMBERSHIP_LEVEL'] == "Administrator") {
// Add CP link
$cp_link = 1;
} // end if
Just ignore my prior post (171471 ).
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Normal <-- --> to rem it out?
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Oh.. now in php Okay
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
no, no commenting them out, its a replace lol... You could do: # // Registered Links
# if ($user['USER_MEMBERSHIP_LEVEL'] == "Administrator" || $user['USER_MEMBERSHIP_LEVEL'] == "Moderator") {
# // Add CP link
# $cp_link = 1;
# } // end if
// Registered Links
if ($user['USER_MEMBERSHIP_LEVEL'] == "Administrator") {
// Add CP link
$cp_link = 1;
} // end if
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
//
Should be the rem for php I thought. But yeah replacement is cool too.
But leaving the original code is good in case I want to revert back.
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
PS - I'm assuming because they're all orange. I don't write code from scratch, I edit what I'm already given, and I use whatever convention the original author used...
Last edited by jgeoff; 12/28/2006 9:43 PM. Reason: P.S.
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Okay, thanks. I know the block but didn't realize the # was valid for php.
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
// This is a comment
# This is a comment
/* this is a comment */
/*
this is a comment
*/
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
Oh and jgeoff, the php code tags use the built in php syntax highliter, all colors are prevously defined, and it does a rather good job of things
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Edited manually with notepad++ but thanks.
Where is the java spell checker controlled?
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
Where is the java spell checker controlled? the ubb doesn't have a built in spellchecker...
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
When you edit or create a post it pulls a java-script from somewhere that is checking the spelling. It might be from a remote site or something else, but it has one.
I'd like to know where so I can maybe add/change it.
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
Are you by chance using FireFox 2.0? If so, its a firefox feature...
I don't recall ever hearing anything about a stock spellsheck feature in the UBB
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Yep... dang - and here I thought it was from UBBT Oh well - thanks.
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
lol completely understandable, was just making sure you knew it was built into your browser (and quite possible the best feature ever lol)
|
|
|
|
Joined: Jun 2006
Posts: 9,242 Likes: 1
Former Developer
|
Former Developer
Joined: Jun 2006
Posts: 9,242 Likes: 1 |
Yes, the spell checker built into Firefox is excellent. I had no idea how many words I used to spell wrong all the time
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
yeh I constantly use it, I never knew I sucked so badly at spelling ...
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
yeh I constantly use it, I never knew I sucked so badly at spelling ... Constantly, huh?
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Like in a typing class. You just can't stop doing it in your head.
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
Most useful class I ever took in high school!!
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Nov 2006
Posts: 3,095 Likes: 1
Carpal Tunnel
|
Carpal Tunnel
Joined: Nov 2006
Posts: 3,095 Likes: 1 |
Yep I took it in Jr. High
I've worked with 3 IT Techs now that are 1 finger typists. Weird... You would think that being in the IT Support field you would know how to type or at least take the time and learn how.
.
|
|
|
|
Joined: Aug 2006
Posts: 1,649 Likes: 1
Pooh-Bah
|
Pooh-Bah
Joined: Aug 2006
Posts: 1,649 Likes: 1 |
I wouldn't even have hired them!
GangsterBB.NET (Ver. 7.6.1.1) PHP Version 5.6.40 / MySQL 5.7.23-23 (was 5.6.41-84.1) / Apache 2.4.54 2007 Content Rulez Contest - Hon Mention UBB.classic 6.7.2 - RIP
|
|
|
|
Joined: Jun 2006
Posts: 16,367 Likes: 126
|
Joined: Jun 2006
Posts: 16,367 Likes: 126 |
I type faster than the FireFox spellchecker can catch sometimes ... I only attended one day of my typing class in College... heck, I was only there for 10 minutes...
|
|
|
2 members (Ruben, SenecaFlyer),
929
guests, and
67
robots. |
Key:
Admin,
Global Mod,
Mod
|
|
|
|