Open sebble opened 13 years ago
keithnewman
commented
13 years ago Would you be incorporating this into the DMS as one of the Admin options? Also, whatever permission that allows you to modify the permissions shouldn't allow the user to remove their own permission to edit permissions (if that makes sense).
sebble
commented
13 years ago Would it be acceptable to not allow one to modify ones own permissions or roles? P.S. why is "Comment & Close" so easy to hit!
keithnewman
commented
13 years ago It would be acceptable to do that. However, you will of course need to manually create the first users permissions. You probably don't want to allow a user to delete their own account either, as this could take the only account with permission editing permissions down with it, meaning a new "admin" account would have to be manually made.
sebble
commented
13 years ago Hrmm.. so we include an admin account with status 'locked' which means he can't remove himself or modify details. No need to lock other accounts, if they want to delete themselves then fine. Also this might add the ability to lock down accounts in general so that people's names don't change. It would be important to outline the rules for admin control here, should admin be able to modify accounts while they are still locked?
sebble
commented
13 years ago I still haven't added the locked status for users, remind me..
There is no interface for editing a user's roles and permissions.