|User Access: $wgGroupPermissions|
|Use this to set access rights for groups and users in these groups.
|Introduced in version:||1.5.0 (r9367)|
|Removed in version:||still in use|
|Allowed values:||Complex array of boolean values.|
|Default value:||See below.|
|Other settings: Alphabetical | By function|
Those permissions, which are granted with $wgGroupPermissions are always cumulative. If a user is member of different groups, then the user will get a right if it is granted to at least one of these groups even if it is not granted to his other groups. In other words, If one of the user's groups has a right, then it is not possible to take the right away using $wgGroupPermissions. Instead use $wgRevokePermissions to revoke permissions.
$wgGroupPermissions['user']['edit'] = true;
This gives all registered users the ability to edit pages.
Custom user groups
You can also define your own user groups. User group names can be no longer than 255 characters. The groups, which have been defined either in DefaultSettings.php or in LocalSettings.php, can be assigned to users through the wiki Special:Userrights interface.
# Start with assigning the default permissions from group "user" $wgGroupPermissions['Trustworthy'] = $wgGroupPermissions['user']; # Now modify these rights: $wgGroupPermissions['Trustworthy']['delete'] = true; $wgGroupPermissions['Trustworthy']['protect'] = true; $wgGroupPermissions['Trustworthy']['patrol'] = true; $wgGroupPermissions['Trustworthy']['purge'] = true; # delete the cache of a page
This creates a group called "Trustworthy". Users of that group have the same permissions as users from the group "user". However, they will be able to delete and protect pages, to patrol edits and to directly purge cached pages.
For in-depth documentation, see Manual:User rights.
Warning: Functionality to make pages inaccessible has not been extensively tested for security. Use at your own risk!