Pending User Requests

Bill Bonnett · ‎10-22-2014

How can I make it so non-admins can approve user access requests? I want a specific group to only approve pending users without having to admins to do it. Any suggestions?

marcguy · ‎10-22-2014

oh ok I just took a look at it, it's a new table and has no workflow so all you have to do really is modify the 2 UI Actions called 'Create User' and 'Reject'.

current condition is this:

current.state == "pending" && (gs.hasRole("admin") || gs.hasRole("user_admin"))

so user_admins also have the rights to do this but if you want another role of as you said a group do this:

current.state == "pending" && gs.isMemberOf('sys_id of your group in there');

Also you might need to check the ACLs on that user_registration_request to ensure those users can read/write to that table.

Alternatively you could just give that group the user_admin role and that's a much easier fix then?

View solution in original post

jkc · ‎10-22-2014

I believe it is a 3 step process.

1) Give the group a role that has access to the User Admin menu.

2) Give the group/role access to the Pending User Registration module

3) Give the group/role acces to read/write in the Access Controls (Personalize --> Security Rules)