nielsrolf
commented
8 years ago The creator of a region is not automatically its admin. Maybe instead of this, a system admin should confirm a region and regions get a flag for this?
Closed jeichelbaum closed 8 years ago
nielsrolf
commented
8 years ago The creator of a region is not automatically its admin. Maybe instead of this, a system admin should confirm a region and regions get a flag for this?
nielsrolf
commented
8 years ago One way would be: we add a confirmed flag to regions which is set to true if the author is a system admin. Otherwise, the flag defaults to false. A region that is created by a user can be updated with the usual put /regions/:regionID.
jeichelbaum
commented
8 years ago Error was on my end I didnt realize everybody is allowed to create regions
eg. CreateRegion can be done by anyone, create region with global size boundaries results in global admin access