search

SocialEngine / phpv4-feature-requests

The purpose of this repository is to collect SocialEngine PHP public feature requests.
https://www.socialengine.com
1 stars 0 forks source link

Super Admin 1 Can Be Un-Approved #7

Open DonnaScriptTechs opened 7 years ago

DonnaScriptTechs commented 7 years ago

From @BikersPost on July 25, 2015 18:48

Super Admin 1 can be un-approved by another super admin restricting access to the site for Super Admin 1

I would suggest "stats", "edit", and delete buttons only be avaible for Super Admin 1 by Super Admin 1

Copied from original issue: SocialEngine/phpv4-issues#192

DonnaScriptTechs commented 7 years ago

From @Elshara on July 26, 2015 2:58

That's existed for years. Super admins have always had this access because they have the ability to edit any members content, kind of like the equivalent to network creator on ning. Admin levels below that do not have this access.

DonnaScriptTechs commented 7 years ago

From @BikersPost on July 26, 2015 3:47

In /application/modules/User/views/scripts/admin-manage/index.tpl file, serach for the below code near line number: 181: 

|
  <a class='smoothbox' href='<?php echo $this->url(array('action' => 'edit', 'id' => $item->user_id));?>'>
         <?php echo $this->translate("edit") ?>
   </a>

And, replace above code with below one:

<?php if($item->user_id != 1) { ?> |
              <a class='smoothbox' href='<?php echo $this->url(array('action' => 'edit', 'id' => $item->user_id));?>'>
               <?php echo $this->translate("edit") ?>
              </a>
<?php } ?>

none of the user, except the user with ID=1 will be able to edit/unapprove the super-admin

DonnaScriptTechs commented 7 years ago

From @Elshara on July 26, 2015 3:59

That's exactly what Ning had their setting to. One admin level one network creator level and one moderator level. Mods couldn't touch admins and admins couldn't touch network creator.

On 25/07/2015, BikersPost notifications@github.com wrote:

In /application/modules/User/views/scripts/admin-manage/index.tpl file, serach for the below code near line number: 181:

|
  <a class='smoothbox' href='<?php echo $this->url(array('action' =>

'edit', 'id' => $item->user_id));?>'> <?php echo $this->translate("edit") ?>

And, replace above code with below one:

<?php if($item->user_id != 1) { ?> |
              <a class='smoothbox' href='<?php echo

$this->url(array('action' => 'edit', 'id' => $item->user_id));?>'> <?php echo $this->translate("edit") ?> <?php } ?>

none of the user, except the user with ID=1 will be able to edit/unapprove the super-admin

Reply to this email directly or view it on GitHub: https://github.com/SocialEngine/phpv4-issues/issues/192#issuecomment-124940909

DonnaScriptTechs commented 7 years ago

From @shivani2910 on July 27, 2015 11:56

@BikersPost Thanks for pointing that out. We'll forward this to our team for internal discussion.

DonnaScriptTechs commented 7 years ago

For this, in case super admin 1 gets hacked or something, do we also want an unlock password to be able to make changes to super admin 1?