API: optionally restrict moderators from accessing sensitive data
This commit is contained in:
Alibek Omarov
parent
3b8eaadb0d
commit
cd1041c3a4
5 changed files with 62 additions and 11 deletions
|
|
@ -255,7 +255,8 @@ config :pleroma, :instance,
|
|||
],
|
||||
show_reactions: true,
|
||||
password_reset_token_validity: 60 * 60 * 24,
|
||||
profile_directory: true
|
||||
profile_directory: true,
|
||||
privileged_staff: false
|
||||
|
||||
config :pleroma, :welcome,
|
||||
direct_message: [
|
||||
|
|
|
|||
|
|
@ -941,6 +941,11 @@ config :pleroma, :config_description, [
|
|||
key: :profile_directory,
|
||||
type: :boolean,
|
||||
description: "Enable profile directory."
|
||||
},
|
||||
%{
|
||||
key: :privileged_staff,
|
||||
type: :boolean,
|
||||
description: "Let moderators access sensitive data (e.g. updating user credentials, get password reset token, delete users, index and read private statuses and chats)"
|
||||
}
|
||||
]
|
||||
},
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue