Open kfogel opened 8 years ago
One shouldn't be able to delete one's own user via API.
It's also questionable whether one should be able to remove admin rights on one's logged-in user who (by implication) has the admin rights needed to be able to remove admin rights.
One shouldn't be able to delete one's own user via API.
It's also questionable whether one should be able to remove admin rights on one's logged-in user who (by implication) has the admin rights needed to be able to remove admin rights.