Hidden Group Membership

(Ryan) #1

Any suggestions on hiding group membership, even on ones own profile page? Or leaving the names but disabling hyperlink?

Avatar Flair (not Badges) for Groups
Making a user's primary group non-visible (eventually) leads to a missing page
(Joshua Rosenfeld) #2

You can remove the link in the title using the script from this post:

(Neil Lalonde) #3

Sounds like you should use the Staff Notes plugin.

(Ryan) #4

But we are automating group status via SSO and then potentially using group mamebership to gate select areas.

(Ryan) #5

Is there a way to populate Staff Notes via SSO parameters? Or to set category permissions based on Notes?

(Neil Lalonde) #6

No there isn’t. Staff notes isn’t going to work. We’ll need a new solution for what you’re trying to do. Maybe adding an option to groups to hide membership from all except staff.

(Sam Saffron) #8

We already have the checkbox [Group is visible to all users] for groups.

Perhaps what we want is to change it to a drop box:

Group visibility:

  • Staff only
  • Group members and staff
  • Everyone

In the mean time does CSS work as a workaround for hiding the groups here?

(Neil Lalonde) #9

We don’t have any group-specific classes on each link there.

(Sam Saffron) #10

There is a trick … you target the href :hugging: in the CSS rule

(Neil Lalonde) #11

Yeah that will work, but yuck. Don’t forget the commas!

(Jeff Atwood) #12

Yes this is needed. How big / risky is this change?

(Sam Saffron) #13

not too big, probably a few hours of work, not high risk.

(Jeff Atwood) #14

Ok then I think we should proceed with it.

(Joshua Rosenfeld) #15

Does this work include removing the href attribute from the title if the group isn’t visible to the user?

(Ryan) #16

That is great news. I will also look into the CSS solution in the interim.

Something else I’m wondering, if the group name is visible and the hyperlink is disabled, it seems like a user should be able to guess the group URL rather easily. Or even if the group name is hidden, people familiar with discourse group URLs could look around and find things.

Would it be possible to disable access to the group list view for those that do not have permission to view the group? Or would we just have to pick group names that we know…but would be difficult to guess?

Thanks for your help on this!

(Joshua Rosenfeld) #17

Maybe I’m missing something…but isn’t that what Sam is going to be working on?

(Ryan) #18

Not totally sure what that change would cover, so I wanted to cover all bases.

The setting to hide from all except staff should not only hide the group name/link from the user’s own profile, but also make sure that even a member of a group couldn’t just access the group by typing in the URL (if it was guessable or someone else shared it by mistake). But staff could still visit the user’s profile page and instantly see all groups the user is in.

That might already be what he was planning. Not sure.

(Sam Saffron) #19

Yes that would be it, an end user would belong to a group but have no way of gleaning that information ever.

(Ryan) #20

And since this is set on the group level we can choose to make some visible to members, and others totally hidden. This is probably a perfect solution for our needs.

Thanks! :content:

(Ryan) #21

Is there any kind of ETA on when this might be available? Trying to determine if it’s worth a request to one of my devs to figure out the CSS tweaks.