[wp-trac] [WordPress Trac] #10201: Switch roles to use single role, and no user-specific caps

WordPress Trac wp-trac at lists.automattic.com
Mon Feb 14 10:57:36 UTC 2011 

#10201: Switch roles to use single role, and no user-specific caps
-------------------------------+-----------------------------
 Reporter:  Denis-de-Bernardy  |       Owner:
     Type:  enhancement        |      Status:  assigned
 Priority:  normal             |   Milestone:  Future Release
Component:  Role/Capability    |     Version:  2.8
 Severity:  normal             |  Resolution:
 Keywords:  early              |
-------------------------------+-----------------------------

Old description:

> See IRC discussions from June 18th 2009
>
> ---
>
> summary courtesy of DD32:
>
> My points from what i know:
>
>  * The current role system is rather complicated, But has a lot of
> flexibility
>  * A lot of the flexibility isn't even used by most (ie. the ability to
> have a user with a Roll + a single capability)
>  * The role system starts having trouble with a high number of users
>    * To look up every user with a certain cap. it requires loading all
> the users, and then checking individually.
>
> The proposed changes are:
>
>  * That we reduce the complex system to something much more simple:
>    * Roles are retained,
>    * However:
>      * Limit users to 1 role (This would be on a per-blog basis, based
> off the permission prefix thinggi..)
>      * Remove the ability for a user to be part of a Role, and have an
> extra capability added on top of that.
>  * This has the ability to significantly increase performance, As now:
>    * Looking up users with a specific cap is easy:
>      * Filter the role list for roles with that cap
>      * SQL the usermeta table for users in those roles
>      * Select those users (if needed, else return the ID's)
>  * An upgrade path is available which doesnt require extra tables, and
> reduces the ammount of serialization
>    * The other option is a whole new set of tables.. which.. those who
> are sane (And there are some insane people in WP Dev..) realise that its
> not really needed.
>  * Fine grain control has never been possible from WP without a plugin,
> Nothing would change here, If a user wants fine grained control over
> permissions, They'd still have to run a plugin, Its just that that plugin
> may have to do more heavy lifting now -- since wordpress's API/role
> system would be simpler and not support the extra fangledangles.

New description:

 See IRC discussions from June 18th 2009

 ---

 summary courtesy of DD32:

 My points from what i know:

  * The current role system is rather complicated, But has a lot of
 flexibility
  * A lot of the flexibility isn't even used by most (ie. the ability to
 have a user with a Roll + a single capability)
  * The role system starts having trouble with a high number of users
    * To look up every user with a certain cap. it requires loading all the
 users, and then checking individually.

 The proposed changes are:

  * That we reduce the complex system to something much more simple:
    * Roles are retained,
    * However:
      * Limit users to 1 role (This would be on a per-blog basis, based off
 the permission prefix thinggi..)
        * This could also be done as a multi-meta system, ie. 1 role per
 meta entry, and since the meta API allows for multiple values for the same
 key, this would have the benefit of multiple roles, and direct lookups.
      * Remove the ability for a user to be part of a Role, and have an
 extra capability added on top of that.
  * This has the ability to significantly increase performance, As now:
    * Looking up users with a specific cap is easy:
      * Filter the role list for roles with that cap
      * SQL the usermeta table for users in those roles
      * Select those users (if needed, else return the ID's)
  * An upgrade path is available which doesnt require extra tables, and
 reduces the ammount of serialization
    * The other option is a whole new set of tables.. which.. those who are
 sane (And there are some insane people in WP Dev..) realise that its not
 really needed.
  * Fine grain control has never been possible from WP without a plugin,
 Nothing would change here, If a user wants fine grained control over
 permissions, They'd still have to run a plugin, Its just that that plugin
 may have to do more heavy lifting now -- since wordpress's API/role system
 would be simpler and not support the extra fangledangles.

--

Comment (by dd32):

 just adding that to the description. I think it may have been mentioned in
 this ticket, but that description was written before it was highligted.

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/10201#comment:57>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software

More information about the wp-trac mailing list