I am trying to limit user capability in v32. I read this page: https://docs.moodle.org/32/en/Roles_FAQ
It says:
> How can I prevent a user from changing their own password?
> The Authenticated user role (which is assigned to users in the System context) has moodle/user:changeownpassword = Allow by default,
> so you have two choices:
> 1. Edit Authenticated user, setting moodle/user:changeownpassword = Not set
> 2. Create a new role CannotChangeOwnPassword with moodle/user:changeownpassword = Prevent
Choice 2 was exactly what I was trying to do, but using 'prevent' doesn't work. I have to use 'prohibit'.
Can anyone else confirm that they need to use 'prohibit' to stop users changing their password; that 'prevent' doesn't work?If confirmed, does anyone know what has changed to make the docs inaccurate?
I'm really struggling to understand the permissions hierarchy and this little disparity doesn't help my understanding.
Thanks!