DiamondList
Feature #91
Create New Model: Group
| Status: | Closed | Start: | 12/14/2009 | ||
| Priority: | Normal | Due date: | |||
| Assigned to: | - | % Done: | 70% |
||
| Category: | - | Spent time: | 7.00 hours | ||
| Target version: | 0.2.0 | ||||
Description
We Should Create a new model called: group. When a new user is created, you should be able to select which group it belongs to. Also, admins should be able to assign permissions on a per-user basis to certain users, which specifies which groups they can access/edit/etc to. This will also be a new model called: UserPermissions, and should contain a user_id, group_id, and CRUD attributes. Fun!
History
Updated by Dave Hulihan 69 days ago
We'll also create a new model: GroupMembership, which specifies which user belongs to which group, and if they are in charge of that group. If the User is a Group Admin, they can add other users to their groups, and they can edit/destroy any wishlist or items for wishlists in their groups.
Updated by Dave Hulihan 67 days ago
- % Done changed from 0 to 40
I added controller and view code for adding, editing and deleting groups, removing and adding users to a group, and I Added the User Search feature that is an Observe field powered by Ajax. Looking Snazzy!
Updated by Dave Hulihan 65 days ago
There's some security concerns about who can add users to a group, and what you can do once a user is added. We might need to implement a request system so a user can request to be added to a group, or vice-versa(a group admin requests that a user join their group). If a user is added automatically, you don't need the user's permission to see their wishlists. That's a problem!
Updated by Dave Hulihan 64 days ago
Created Group Membership Request model, controller, and view code. Also created code to accept, create, and delete requests.
Updated by Dave Hulihan 64 days ago
- % Done changed from 40 to 70
I Added an feature that lets new users get assigned to a group during creation, If a group admin wants to create an account for someone else, it bypasses the need to approve a request. Getting closer!