We've been scratching our heads trying to solve a problem and haven't come up with a satisfactory solution, so asking the community here how you might solve it.
Here's the requirement: we need to grant all users of a certain type (education staff) view-only access to all courses. A sub-requirement is to grant some users (e.g. external education staff) view-only access to courses in a category, but I know how to make roles assignable to a context so we don't need to cover that further.
The users are grouped using cohorts.
- What is the best way to make a "view-only" role? Is there guidance or an archetype to use? The role should be able to browse categories, see courses they are not enrolled in, and the content of those courses. They should not be able to edit or interact with those courses. There are so many permissions I don't know where to start!
- How do we add a group of users (e.g., all the users in a cohort) to a role? Can a cohort group be assigned to a role (I think not having done some searching). Can it be done via bulk spreadsheet upload? Is there a plugin? Or some other way to do it built in? I can't find a way of doing this other than by adding the users to the role one by one. I don't want to bulk enrol the users on to the courses because I don't want them to appear in the participants list. This seems like an obvious task, but no obvious way to do it. We are comfortable writing SQL if necessary.