|
|
|
|
@ -5,53 +5,53 @@ Meteor.startup -> |
|
|
|
|
# then we can define edit-<type>-message instead of edit-message |
|
|
|
|
# 2. admin, moderator, and user roles should not be deleted as they are referened in the code. |
|
|
|
|
permissions = [ |
|
|
|
|
{ _id: 'access-permissions', roles : ['admin'] } |
|
|
|
|
{ _id: 'add-oauth-service', roles : ['admin'] } |
|
|
|
|
{ _id: 'add-user-to-room', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'archive-room', roles : ['admin', 'owner'] } |
|
|
|
|
{ _id: 'assign-admin-role', roles : ['admin'] } |
|
|
|
|
{ _id: 'ban-user', roles : ['admin', 'moderator', 'owner'] } |
|
|
|
|
{ _id: 'bulk-create-c', roles : ['admin'] } |
|
|
|
|
{ _id: 'bulk-register-user', roles : ['admin'] } |
|
|
|
|
{ _id: 'create-c', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'create-d', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'create-p', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'create-user', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-c', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-d', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-message', roles : ['admin', 'moderator', 'owner'] } |
|
|
|
|
{ _id: 'delete-p', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-user', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-message', roles : ['admin', 'moderator', 'owner'] } |
|
|
|
|
{ _id: 'access-permissions', roles : ['admin'] } |
|
|
|
|
{ _id: 'add-oauth-service', roles : ['admin'] } |
|
|
|
|
{ _id: 'add-user-to-room', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'archive-room', roles : ['admin', 'owner'] } |
|
|
|
|
{ _id: 'assign-admin-role', roles : ['admin'] } |
|
|
|
|
{ _id: 'ban-user', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'bulk-create-c', roles : ['admin'] } |
|
|
|
|
{ _id: 'bulk-register-user', roles : ['admin'] } |
|
|
|
|
{ _id: 'create-c', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'create-d', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'create-p', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'create-user', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-c', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-d', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-message', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'delete-p', roles : ['admin'] } |
|
|
|
|
{ _id: 'delete-user', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-message', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'edit-other-user-active-status', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-other-user-info', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-other-user-password', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-privileged-setting', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-room', roles : ['admin', 'moderator', 'owner'] } |
|
|
|
|
{ _id: 'manage-assets', roles : ['admin'] } |
|
|
|
|
{ _id: 'manage-integrations', roles : ['admin'] } |
|
|
|
|
{ _id: 'manage-own-integrations', roles : ['bot'] } |
|
|
|
|
{ _id: 'manage-oauth-apps', roles : ['admin'] } |
|
|
|
|
{ _id: 'mention-all', roles : ['admin', 'moderator', 'owner', 'user'] } |
|
|
|
|
{ _id: 'mute-user', roles : ['admin', 'moderator', 'owner'] } |
|
|
|
|
{ _id: 'remove-user', roles : ['admin', 'moderator', 'owner'] } |
|
|
|
|
{ _id: 'run-import', roles : ['admin'] } |
|
|
|
|
{ _id: 'run-migration', roles : ['admin'] } |
|
|
|
|
{ _id: 'set-moderator', roles : ['admin', 'owner'] } |
|
|
|
|
{ _id: 'set-owner', roles : ['admin', 'owner'] } |
|
|
|
|
{ _id: 'unarchive-room', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-c-room', roles : ['admin', 'user', 'bot'] } |
|
|
|
|
{ _id: 'view-d-room', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'view-full-other-user-info', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-history', roles : ['user'] } |
|
|
|
|
{ _id: 'view-joined-room', roles: ['guest'] } |
|
|
|
|
{ _id: 'view-logs', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-other-user-channels', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-p-room', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'view-privileged-setting', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-room-administration', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-statistics', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-user-administration', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-other-user-info', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-other-user-password', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-privileged-setting', roles : ['admin'] } |
|
|
|
|
{ _id: 'edit-room', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'manage-assets', roles : ['admin'] } |
|
|
|
|
{ _id: 'manage-integrations', roles : ['admin'] } |
|
|
|
|
{ _id: 'manage-own-integrations', roles : ['admin', 'bot'] } |
|
|
|
|
{ _id: 'manage-oauth-apps', roles : ['admin'] } |
|
|
|
|
{ _id: 'mention-all', roles : ['admin', 'owner', 'moderator', 'user'] } |
|
|
|
|
{ _id: 'mute-user', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'remove-user', roles : ['admin', 'owner', 'moderator'] } |
|
|
|
|
{ _id: 'run-import', roles : ['admin'] } |
|
|
|
|
{ _id: 'run-migration', roles : ['admin'] } |
|
|
|
|
{ _id: 'set-moderator', roles : ['admin', 'owner'] } |
|
|
|
|
{ _id: 'set-owner', roles : ['admin', 'owner'] } |
|
|
|
|
{ _id: 'unarchive-room', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-c-room', roles : ['admin', 'user', 'bot'] } |
|
|
|
|
{ _id: 'view-d-room', roles : ['admin', 'user', 'bot'] } |
|
|
|
|
{ _id: 'view-full-other-user-info', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-history', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'view-joined-room', roles : ['guest', 'bot'] } |
|
|
|
|
{ _id: 'view-logs', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-other-user-channels', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-p-room', roles : ['admin', 'user'] } |
|
|
|
|
{ _id: 'view-privileged-setting', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-room-administration', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-statistics', roles : ['admin'] } |
|
|
|
|
{ _id: 'view-user-administration', roles : ['admin'] } |
|
|
|
|
] |
|
|
|
|
|
|
|
|
|
for permission in permissions |
|
|
|
|
@ -59,12 +59,12 @@ Meteor.startup -> |
|
|
|
|
RocketChat.models.Permissions.upsert( permission._id, {$set: permission }) |
|
|
|
|
|
|
|
|
|
defaultRoles = [ |
|
|
|
|
{ name: 'admin', scope: 'Users', description: 'Admin' } |
|
|
|
|
{ name: 'admin', scope: 'Users', description: 'Admin' } |
|
|
|
|
{ name: 'moderator', scope: 'Subscriptions', description: 'Moderator' } |
|
|
|
|
{ name: 'owner', scope: 'Subscriptions', description: 'Owner' } |
|
|
|
|
{ name: 'user', scope: 'Users', description: '' } |
|
|
|
|
{ name: 'bot', scope: 'Users', description: '' } |
|
|
|
|
{ name: 'guest', scope: 'Users', description: '' } |
|
|
|
|
{ name: 'owner', scope: 'Subscriptions', description: 'Owner' } |
|
|
|
|
{ name: 'user', scope: 'Users', description: '' } |
|
|
|
|
{ name: 'bot', scope: 'Users', description: '' } |
|
|
|
|
{ name: 'guest', scope: 'Users', description: '' } |
|
|
|
|
] |
|
|
|
|
|
|
|
|
|
for role in defaultRoles |
|
|
|
|
|
Gabriel Engel
10 years ago