I've done something akin to this myself on my board, as we recently got hacked... and since View Passwords in CP was visible... blech.
My solution was simple, but a bit kludgey.
I took my Super Mod group (you may need to make a new one if you have seperate super mods) and moved all the extra admins we had into it.
Then, I took the various PHP files from the admin folder (mainly user.php)
And copy/pasted the functions I wanted my super mods to have into the /mod/user.php file.
Mainly, I added the ability to edit profiles.
I removed some of the unneccesary "Useful Links" at the top, for starters.
While I was at it, I edited it so that a number of things were inaccessible, like changing user groups or emails addresses, since both are serious security holes (either they make themselves an admin, or they change your email address to their own, mail themselves your password, and then change your address back)
Also, I added one line to the Find function so that an "[Edit User]" shows up next to each search result.
Access Masks were also insanely simple to add through the same copy/paste method.
Same with IP searching.
I also added other miscellaneous files for what they needed to do, like newsfade.php and styles.php
Finally, I edited /mod/index.php to include new links to all these nifty functions.
Finally, I copied all these files to a new directory on the server (call it supermod).
And then edited /moderator.php (which we have already modified to make a link in each post that takes you to the edit user screen for the user in question) to check for an additional usergroup and if so, redirect to the supermod CP.
Voila! A new CP, with handpicked functions from the admin CP, but not all the danger.
Now we have 3 CPs... one for normal mods, where they can edit custom user fields only (because they need to on our forum)
One for our super mods, who can edit almost everything they could need to.
And one for our admins, with full powers.
I still don't know PHP at all, but as almost all of this is merely copy/paste anyways, it's quite easy.
Next on my list... allowing my supermods to IP ban.
I don't see much point in having this. It seems like you're just taking the administrator user group down to the abilities of moderators, and making a new usergroup that has the abilities of the administrator usergroup.
vBulletin is a forum system, and a very good one. There's not much point in trying to integrate a phpMyAdmin type program as well as web-based FTP into it when I'm sure there's other projects out there that are designed for that and that only.
Originally posted by Palmer ofShinra I've done something akin to this myself on my board, as we recently got hacked... and since View Passwords in CP was visible... blech.
My solution was simple, but a bit kludgey.
I took my Super Mod group (you may need to make a new one if you have seperate super mods) and moved all the extra admins we had into it.
Then, I took the various PHP files from the admin folder (mainly user.php)
And copy/pasted the functions I wanted my super mods to have into the /mod/user.php file.
Mainly, I added the ability to edit profiles.
I removed some of the unneccesary "Useful Links" at the top, for starters.
While I was at it, I edited it so that a number of things were inaccessible, like changing user groups or emails addresses, since both are serious security holes (either they make themselves an admin, or they change your email address to their own, mail themselves your password, and then change your address back)
Also, I added one line to the Find function so that an "[Edit User]" shows up next to each search result.
Access Masks were also insanely simple to add through the same copy/paste method.
Same with IP searching.
I also added other miscellaneous files for what they needed to do, like newsfade.php and styles.php
Finally, I edited /mod/index.php to include new links to all these nifty functions.
Finally, I copied all these files to a new directory on the server (call it supermod).
And then edited /moderator.php (which we have already modified to make a link in each post that takes you to the edit user screen for the user in question) to check for an additional usergroup and if so, redirect to the supermod CP.
Voila! A new CP, with handpicked functions from the admin CP, but not all the danger.
Now we have 3 CPs... one for normal mods, where they can edit custom user fields only (because they need to on our forum)
One for our super mods, who can edit almost everything they could need to.
And one for our admins, with full powers.
I still don't know PHP at all, but as almost all of this is merely copy/paste anyways, it's quite easy.
Next on my list... allowing my supermods to IP ban.