[eluser]missionsix[/eluser]
Currently Mauth is restricted to one role per user, but roles can be inherited infinitely. If a role inherits a permission, it will be checked up the inheritance branch until it is either approved, denied or there is no rule set (denied).
For example, if you had this schema, where indentation indicates inheritance:
Code:
admin allowed
moderator inherit
forum mod inherit
All three would be approved for the permission. However, if you had the following:
Code:
admin allowed
moderator denied
forum mod inherit
only the Administrator would be granted access.
Code:
admin allowed
user ignored/inherit
new_users inherit
In the above schema, users and new users would be Denied access by default, because no rule is set which grants them access. So its easy to setup access restrictions by only allowing the groups you want in. And I saw no need for multiple groups.