Closed (outdated)
Project:
Drupal core
Version:
6.6
Component:
user system
Priority:
Normal
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
2 Dec 2008 at 11:24 UTC
Updated:
2 Mar 2016 at 22:18 UTC
Jump to comment: Most recent
Comments
Comment #1
julma commentedComment #2
julma commentedspelling fault in the title sorry
Comment #3
damien tournoud commentedI don't really understand the issue. Permission granted to the "authenticated user" role apply to all authenticated users. You can't create a role that has less permissions then the "authenticated user" role.
Comment #4
julma commentedGenerally "authenticated" role is seen as the "normal" role for users.
But sometimes, it can be useful to be able to temporaly downgrade a normal user to a role with less permission. The general use case is when you want user to perform a given action before he can recover his normal permissions.
In my example, I ve created a role "not verified user" and the action I want the user to perform is "checking email drupal send to him to verify his account".
I am using the loggintoboggan module http://drupal.org/project/logintoboggan
User can create his password directly from the register form. In the meantime as a "not verified user" he can still edit his basic account information and even change his password if he wants but he hasn't yet most of permissions granted to normal user. Latter if he changes his email adress, he loose his status of normal "authenticated" until he confirms his email again.
Lot of other use case examples could be found.
The usability issue is that in this form /admin/user/user/list
You need to "remove" the role with less permissions to come back to the normal "authenticated" user role.
This is not intuitive for a basic drupal administrator who don't care about how drupal works.
A possible solution :
In the form /admin/user/user/list
Replace "add role" and "remove role" by "change role to"
Comment #5
julma commentedBy the way Damien, it is possible to create a role that has less permissions than the "authenticated user" role.
Comment #6
dpearcefl commentedHow do you create an authenticated user with less permissions than the authenticated user role?