User admin permissions not working across groups

[GoogleCodeExporter]

What steps will reproduce the problem?
1. Create two groups with two admin groups (one admin for each).
2. Put a user in each group, but only let the corresponding admin group have 
permission to update/delete/create like members.
3. Give both admin groups permission to do the UI "UserForm" for all 
capabilities, and each the other admin group permission to list and view 
details members of the other group.
4. When logged in to one of the admin groups, note that you can list all of 
your users as well as those of the other group. This is okay, but it also 
allows update/delete/create-like, too.  

What is the expected output? What do you see instead?
While the UI permission says they can, the group permission should disable such 
actions on those members. The permission needs to set the buttons to 
update/delete/create-like on the UI screen based on the selected user (to 
ensure that the admin user has the proper permission based on the groups that 
selected user belongs to).

Original issue reported on code.google.com by yoz...@gmail.com on 14 Dec 2012 at 10:47

[GoogleCodeExporter]

This is fixed in the 12.12.15 release. Indeed, the UI UserForm was only 
checking the permission of the admin user and whether the UI general 
configuration allowed it. It was not using the selected user's group's 
permissions as it should have.

Original comment by yoz...@gmail.com on 14 Dec 2012 at 10:48

• Changed state: Fixed
• Added labels: ****
• Removed labels: ****