I am working on migrating a large 1.9 site to Moodle 2.x. Our school started with Moodle 1.5, and have a large 1.9 site now a few years later.
Something I noticed on our test upgrade, is that something has changed in the way roles & capabilities combine.
For many years now, we have done the following, and it's worked perfectly:
-- We have student workers (grad students) who help instructors manage their courses. They are paid employees of the school. It is their job (20 hrs a week) to support the instructors.
-- The students are given a sitewide role "Graduate Assistant" which has moodle/course:manageactivities-> Allow.
-- The student role has moodle/course:manageactivites set to Prevent (rather than the default of "Not Set.")
In m1.9, the clever combined effect is that our student workers can modify course materials for any course in which they are not enrolled. If they are enrolled in a course, their ability to modify the course is revoked by the role math.
In m2.x, it appears that the calculation is not the same. Students who are given a sitewide Grad Assistant role can modify any course, even the ones they are enrolled in.
Has anyone experienced this problem? Is this how it's supposed to work now? course:manageactivities is just one of many capabilities that we grant to Grad Assistants but revoke in the student role.
Thanks for your help,