Admin Roles: Restrict access to Settings

Description

Only admins with superadmin, support, policy_and_abuse, or tag_wrangling roles should

  • have the “Settings” option in the admin navigation

  • be able to access the Archive Settings page by following said link

  • see all the settings on the form

Admins with the superadmin role should

  • be able to update any setting

Admins with the tag_wrangling role should

  • be able to update the “Turn off tag wrangling for non-admins” setting

  • receive an error message if they attempt to update another setting

    • TODO: In current branch, it gives a success message, although the setting is not updated.

Admins with the support role should

  • be able to update the “Turn off support form” setting and modify the text that appears in its place

    • TODO: In current branch, the support role has no access to settings.

  • receive an error message if they attempt to update another setting

Admins with the policy_and_abuse role should

  • be able to update the “Automatically hide spam works” setting

    • TODO: In current branch, the policy_and_abuse role does not have access to settings.

  • receive an error message if they attempt to update another setting

Admins without those roles should

  • not have the “Settings” link in the admin navigation

    • TODO: In current branch, the link is present for everyone.

  • be redirected and given an error message if they enter the URL to the Archive Settings page (https://test.archiveofourown.org/admin/settings)

 

Environment

None

Assignee

elzj78 (Elz)

Reporter

elzj78 (Elz)

Roadmap

Admin

Priority

Medium

Affects versions

Fix versions

None

Components

BackEnd

Difficulty

Medium

Required Access Level

Admin

Epic Link

Milestone

Internal 0.9
Configure