MUC allows setting room-level owners/admins, but what about being able to set these permissions for groups of rooms, or for the entire MUC domain? I have a need for a hierarchy of administration.
One idea I have is to simply add custom affiliation types. For example, something like "x-domainowner" could represent the highest possible authority of the service. However, this would also require custom clients as far as I can tell. Maybe it would make the most sense to continue using the existing fixed affiliation types, but be able to work with them under various scopes (using extensions to the administrative iq exchanges to specify the scope). For example, a domain-wide owner could grant domain-wide admin affiliation to a user, but within the context of a single room these affiliations would still be advertised to clients as "owner" and "admin", respectively. Just throwing out ideas, and I'm curious if anyone out there has done hierarchical permissions in their MUC implementations, standard or not. -Justin
