Permissions (Server)

From OpenSimulator

(Difference between revisions)
Jump to: navigation, search
(Estate Owner)
 
(20 intermediate revisions by 6 users not shown)
Line 1: Line 1:
=OpenSim Permissions=
+
__NOTOC__
 +
{{Quicklinks}}
 +
<br />
 +
 
 
This page aims to explain the server side permissions as implemented by the default PermissionsModule.
 
This page aims to explain the server side permissions as implemented by the default PermissionsModule.
  
On this page, each permission group is defined as a 'Set' - that is, who is within that set. A Set can contain other Sets.
+
{{content}}
  
==Region Master==
+
=== Permissions ===
Due to historical reasons, The Region Master is called Master Avatar, Region Master or Region Owner interchangeably.
+
  
===Set===
+
== Administrator ==
Specified per region in the region xml.
+
===Permissions===
+
 
+
==Administrator==
+
 
Somebody set to administrate the content of a set of regions within an estate.
 
Somebody set to administrate the content of a set of regions within an estate.
  
===Set===
+
=== Set ===
if (Region Owner is God) Region Owner
+
* if (Grid Gods Allowed) GodLevel > 200
if (Grid Gods Allowed) GodLevel > 200
+
* Estate Owner
Estate Owner
+
===Permissions===
+
  
==Estate Owner==
+
=== Permissions ===
===Set===
+
 
 +
== Estate Owner ==
 +
=== Set ===
 
Specified in estate_settings
 
Specified in estate_settings
===Permissions===
+
=== Permissions ===
  
==God==
+
== God ==
===Set===
+
A 'God' has a 'god level' - this concept is under development. The 'god' concept is a way to assign users trust levels, rather than incorporating them into a policy group like 'administrators' or 'estate managers'. See also [[Userlevel]]
 +
=== Set ===
 
Administrators
 
Administrators
===Permissions===
+
=== Permissions ===
  
==Estate Manager==
+
== Estate Manager ==
===Set===
+
=== Set ===
Estate Owner
+
* Estate Owner
Listed in estate_managers
+
* Listed in estate_managers
===Permissions===
+
  
==Parcel Owner==
+
=== Permissions ===
===Set===
+
Listed in land
+
===Permissions===
+
  
==Parcels Managers==
+
== Parcel Owner ==
===Set===
+
=== Set ===
Parcel Owner
+
Specified in land
Estate Managers
+
 
Administrators
+
=== Permissions ===
===Permissions===
+
 
 +
== Parcels Managers ==
 +
=== Set ===
 +
* Parcel Owner
 +
* Estate Managers
 +
* Administrators
 +
=== Permissions ===
 +
 
 +
== Object Manager ==
 +
Has permissions to manage content on an object level.
  
==Object Manager==
 
Has permissions to administrate single objects
 
 
Comments taken from the code:
 
Comments taken from the code:
 
* The default is to deny.
 
* The default is to deny.
Line 59: Line 61:
 
* Admin should be able to edit anything in the sim (including admin objects)
 
* Admin should be able to edit anything in the sim (including admin objects)
  
===Set===
+
=== Set ===
if locked only Administrators
+
* if locked only Administrators
if not locked,
+
* if not locked,
Object Owner
+
** Object Owner
if(Owner not Administrator) Parcel Owner
+
** if(Owner not Administrator) Parcel Owner
if(Owner not Administrator) Estate Manager
+
** if(Owner not Administrator) Estate Manager
Administrator
+
** Administrator
===Permissions===
+
 
 +
===Permissions Module===
 +
See the [Permissions] section in OpenSim.ini.example for the various configuration settings that are possible.

Latest revision as of 17:07, 25 March 2014


This page aims to explain the server side permissions as implemented by the default PermissionsModule.


[edit] Permissions

[edit] Administrator

Somebody set to administrate the content of a set of regions within an estate.

[edit] Set

  • if (Grid Gods Allowed) GodLevel > 200
  • Estate Owner

[edit] Permissions

[edit] Estate Owner

[edit] Set

Specified in estate_settings

[edit] Permissions

[edit] God

A 'God' has a 'god level' - this concept is under development. The 'god' concept is a way to assign users trust levels, rather than incorporating them into a policy group like 'administrators' or 'estate managers'. See also Userlevel

[edit] Set

Administrators

[edit] Permissions

[edit] Estate Manager

[edit] Set

  • Estate Owner
  • Listed in estate_managers

[edit] Permissions

[edit] Parcel Owner

[edit] Set

Specified in land

[edit] Permissions

[edit] Parcels Managers

[edit] Set

  • Parcel Owner
  • Estate Managers
  • Administrators

[edit] Permissions

[edit] Object Manager

Has permissions to manage content on an object level.

Comments taken from the code:

  • The default is to deny.
  • People shouldn't be able to do anything with locked objects, except the Administrator. The 'set permissions' runs through a different permission check, so when an object owner sets an object locked, the only thing that they can do is unlock it. Nobody but the object owner can set permissions on an object.
  • Object owners should be able to edit their own content
  • Users should be able to edit what is over their land.
  • Estate users should be able to edit anything in the sim
  • Admin objects should not be editable by estate managers or parcel owners
  • Admin should be able to edit anything in the sim (including admin objects)

[edit] Set

  • if locked only Administrators
  • if not locked,
    • Object Owner
    • if(Owner not Administrator) Parcel Owner
    • if(Owner not Administrator) Estate Manager
    • Administrator

[edit] Permissions Module

See the [Permissions] section in OpenSim.ini.example for the various configuration settings that are possible.

Personal tools
General
About This Wiki