Open bnicholson opened 1 year ago
Some things that need to be done.
1) If not logged in then the "+" buttons that add new tournaments need to be disabled/not shown. 2) A gear/icon setting button should not be shown if not logged in and not the tournament owner or tournament staff.
It's time to start building in authorization and authentication.
We need some kind of roles that give you permissions to perform certain actions. a) Admin/SuperAdmin - full rights to do anything on any tournament b) tournament director/owner - full rights to do anything on a tournament that he/she created. c) tournament subdirector - Full rights to do anything on a tournament but delete it. d) Division director - full rights to do anything on a division. e) Field Director - handles multiple coaches f) Coach - leads one or more teams g) Public - can't change anything but can view anything but only during a tournament. // this one needs some thought // someday we will have videos capture and maintained on this site. A video of each quiz.
// how do we protect privacy rights???