GlobalPermMap¶

class GlobalPermMap[source]¶

The mapping between global permission and value for a user.

can_create_courses_in_all_tenants: bool¶: Users with this permission can create courses in all tenants regardless of whether they are a member of the tenant or not.

can_edit_coupons: bool¶: Users with this permission can create, edit and delete pricing coupons for courses.

can_edit_pricing: bool¶: Users with this permission can change the pricing for courses and tenants.

can_impersonate_users: bool¶: Users with this permission can impersonate users, i.e. they can login as other users.

can_list_hidden_tenants: bool¶: Users with this global permission can list hidden tenants. All users can still retrieve hidden tenants if they know the id. This permission only has effect on the global level, not tenant level.

can_manage_all_community_library_items: bool¶: Users with this permission can see and delete all the items in the community library, even those not published to their tenant.

can_manage_background_jobs: bool¶: Users with this permission can view, stop, and restart background jobs.

can_manage_git_connections_in_all_tenants: bool¶: Users with this permission can create, edit, and list all Git connections that exist on the platform.

can_manage_global_roles: bool¶: Users with this permission can change the global permissions for other users on the site.

can_manage_lti_providers: bool¶: Users with this permission can edit and list existing, and create new LTI providers.

can_manage_pearson_templates: bool¶: Users with this permission can create, edit, and delete Pearson templates, questions, and books.

can_manage_quarantined_registrations: bool¶: Users with this permission can accept and decline quarantined user registrations.

can_manage_site_settings: bool¶: Users with this permission can manage the settings of this CodeGrade instance

can_manage_sso_providers: bool¶: Users with this permission can connect new SSO Identity Providers.

can_manage_tenants: bool¶: Users with this permission can create new tenants on the system.

can_search_users_in_all_tenants: bool¶: Users with this permission can search for users in all tenants regardless of whether they are a member of the tenant or not.

can_see_all_transactions: bool¶: Users with this permission are allowed to view all transactions from all users.

can_see_coupons: bool¶: Users with this permission can see the pricing coupons generated for the courses they are part of.

can_see_statistics_in_all_tenants: bool¶: Users with this permission can view the statistics of any tenant on the system. The own-tenant counterpart is the tenant permission can_see_tenant_statistics.

can_skip_payment_in_all_tenants: bool¶: Users with this permission do not have to pay for paid courses in any tenant.

is_global_admin: bool¶: Users with this permission are granted every course-level permission in every course across every tenant, even when they do not have a role within the tenant or course. This does not confer arbitrary system access; it only elevates course-level access.