membergroup A has all 22 forum boards selected to be seen and accessed.
membergroup B has 1 special board excluded and should only see and access the remaining 21 boards. that one special excluded board does not allow membergroup B.
however, a user assigned only to membergroup B still can still see and access all 22 boards!
what's wrong?
check which boards the post count based groups can see, remember everyone is in at least 2 groups. a primary group and a post count group.
this is where i get lost, so please let me revise the scenario ...
there are 4 forum boards - A, B, C, D
the single post count membergroup "ALPHA" only allow viewing/access of A and B.
regular membergroup "BETA" allows viewing/access of all boards A, B, C, D.
the above works just fine.
regular new membergroup "OMEGA" is created that allows viewing/access of only boards A and B, yet "OMEGA" can still view/access board C.
because the OMEGA user is *ALSO* in the post-count group ALPHA
okay, my bad on the scenario portrayal, which should be ...
there are 4 forum boards - A, B, C, D
the single post count membergroup "ALPHA" only allow viewing/access of A and B.
regular membergroup "BETA" allows viewing/access of all boards A, B, C, D.
the above works just fine.
regular new membergroup "OMEGA" is created that allows viewing/access of only boards B and C, yet "OMEGA" can still view/access board A.
here's the thing - post count membergroup ALPHA is where "regular" members live and they require access to board A.
do i need to create a new regular membergroup that mirrors the post count member group ALPHA and move all 40k+ users?
Essentially, yes.
SMF membergroup permissions are INCLUSIVE.
If a user belongs to *ANY* group that has access to a permission (or board), then that user will have access to that permission (or board)
So, using post-count membergroups to control access is fine... unless you intend for people to NOT have access -- because in 2.0.x, there is no deny access permission with regards to board access. and your setup (with only one post-count group) won't allow you to forbid access to anyone.
(I have a board that is only accessible to users after they hit 1000 posts, and I have a board which is only accessible to users who have under 10 posts -- but I never set access to any other board based on post-count)
i've tried a number of different regular and post count membergroups in copy of my live forum. when i create a second post count membergroup, it appears as if all the users from the first (original) post count group are automatically assigned this new post count group. how are the two post count membergroups differentiated?
depends on how many posts you define for each group.
for example, on one site I have
Raw Recruit (starts at 0 posts)
Bootcamper (starts at 10 posts)
Enlisted (starts at 50 posts)
Officer (starts at 200 posts)
Veteran (started at 500 posts)
Ancient (starts at 2,000 posts)
Elder God (starts at 50,000 posts)
i don't understand what setting the post count number for one of the post count membergroups has to do with any of what i'm trying to accomplish, which is, to create a new regular membergroup that does not have access to one of the boards in the one and only post count membergroup.
if i create another (new) post count membergroup, which i have as you can see my previous post's attachment, and this new membergroup doesn't have the board that i wish to exclude access to from the newly created regular membergroup, how does this new regular membergroup "point" to the new post count membergroup?
It does not.
Post count groups are separate.
And you will ALWAYS have this problem, if you have a board access controlled by a post count group..
Lainaus käyttäjältä: Kindred - joulukuu 23, 2019, 09:01:51 IP
It does not.
Post count groups are separate.
And you will ALWAYS have this problem, if you have a board access controlled by a post count group..
ok, gotcha, as i expected.
how do i move all the post count membergroup members to a new regular membergroup?
you cannot. everyone has to be in a post count group. you cannot take them out of a post count group.
Lainaus käyttäjältä: Illori - joulukuu 24, 2019, 07:15:36 AP
you cannot. everyone has to be in a post count group. you cannot take them out of a post count group.
is there a reasonable solution for the creation of a regular group that will not allow access to a specific board that's allowed in the post count group?
set the access per the normal groups and don't grant access in the post count groups.
Lainaus käyttäjältä: Illori - joulukuu 24, 2019, 07:31:54 AP
set the access per the normal groups and don't grant access in the post count groups.
create a new regular membergroup, but don't grant its access to that special board that's currently in the post count membergroup? if so, that fails.
if the post count based group gives access and the user has enough posts to be in that group, they will ALWAYS have access.
Lainaus käyttäjältä: Illori - joulukuu 24, 2019, 09:16:15 AP
if the post count based group gives access and the user has enough posts to be in that group, they will ALWAYS have access.
then what did you mean by "set the access per the normal groups and don't grant access in the post count groups."?
don't give access to any boards in the post count groups, only grant the access via the normal groups, this way the number of posts will have NOTHING to do with the boards the user has access to.
Lainaus käyttäjältä: Illori - joulukuu 24, 2019, 09:20:50 AP
don't give access to any boards in the post count groups, only grant the access via the normal groups, this way the number of posts will have NOTHING to do with the boards the user has access to.
yes, understood - as i asked before, how do i move 40k users into a newly created regular membergroup?
as far as I know there really is not a way to mass move users into a new group.
maybe in the database but that is never the recommended method.
Lainaus käyttäjältä: Illori - joulukuu 24, 2019, 09:34:07 AP
as far as I know there really is not a way to mass move users into a new group.
maybe in the database but that is never the recommended method.
thank you for your time input. there is no easy way out of this trap, no way to exclude a board already assigned to the post count membergroup. this sucks, but at least SMF is free.
too bad i didn't understand the relationship 'tween the post count and regular groups whence i built the forum. my bad.
board access, membergroup manipulations, and user permissions are not easy to understand in SMF for me, and probably too many others. it's convoluted and bulky at best. it begs to have a simple assignable check box matrix that would make access to boards and permissions easy to see and manipulate. this includes the ability to read specific forums without the ability to post. oh well, one can dream, can't one? :)
you can do permission profiles for boards where you want some groups to read and others to write. or if all can only read, you can set the board to a read only profile that already exists.
if you give more details as to what you want with the board access maybe someone here can figure out how you can set the access rights. it may work with what you have already with a few tweaks.
There is such a simple checkbox type interface.
and SMF permissions are actually very simple. You either have access (allowed) or you do not have access (disallowed)
If the permission is granted by ANY group that the user belongs to, then that user HAS access.
it's simple... You just got into a bad state because you used post-count groups - apparently not really understanding that EVERY user is ALWAYS part of one post-count group.
However... smf 2.1 does add the deny ability to board access as well.... (which will just confuse people further, IMO, since they don't already understand what inclusive permissions do, adding exclusive permissions just makes things more complicated)
Lainaus käyttäjältä: Kindred - joulukuu 25, 2019, 01:06:34 IP
... You just got into a bad state because you used post-count groups - apparently not really understanding that EVERY user is ALWAYS part of one post-count group. ...
Yep, my bad. I'm still a fan of SMF and thankful for you and the entire SMF team.
New Permission profile is easiest way to get full control over any board, post based membergroups are there so you can organize access levels and moderation. Also is very important if you have more membergroups to remove permissions from Regular Members, because that brings confusion and nothing more, less control and problems.
Since you said that you have clone forum for testing purposes, if you need help I can set up permissions the same way I'm using on my forums. That makes SMF very special, complex and better than other forum software, a lot of fun in that if you know what you want, in right hands control over boards, membergroups and permissions is nice, but its easy to make mistakes if not experienced.
@Kindred @Illori any 2.1 forum with free administrator for testing purposes?