Anonymous, authenticated, trusted

Submitted by faustus on Sat, 01/09/2010 - 14:58
  • Anonymous users should have read privileges only.
    • admin/user/permissions - remove privileges except possibly:
      • access news
      • access announcements
      • access printer-friendly version
      • access comments
      • access site-wide contact form
      • access content
      • access notify
      • access print
      • access send to friend
      • access quotes
      • access service links
  • Authenticated users should be moderated.
    • admin/content/types/ - edit every content type workflow settings to "In moderation queue" including but not limited to:
      • announcements
      • blog
      • book
      • event
      • forum
      • image
      • page
      • petition
      • poll
      • quotes
      • story
      • tellafriend
      • webform
  • Trusted users can bypass moderation.
    • install modr8
    • install modr8_bypass
    • admin/user/roles - create a role e.g. "trusted user"
    • admin/user/permissions/ - necessarily a judgement call, add posting permissions for those entries you do not want to moderate for trusted users
    • admin/content/node/overview - review posts to identify users you want to "trust"
    • open the candidate account in a new tab or window
    • choose "edit"
    • add the role "trusted user"
  • Moderated users can become "trusted", "blocked" or "deleted"
    • If a moderated post has merit, edit the poster's account and add the role "trusted user"
    • if the post lacks merit, either delete the post and or edit the users account and change active to blocked
    • I am looking for workable criteria to delete accounts. Inactivity seems to be the safest route at the moment, after all, the purpose in having members is to add their content when appropriate