Unauthorized actions with user manager roles
If a user is given the user manager permissions, they cannot access many of the actions on the site. I believe this is unintentional since these users can still be real users of the system that need to perform actions on the site (the same way as "normal" admins can).
I believe the reason can be found from the following line of code:
The user manager permissions is overriding any other permissions that could be performed.
At least the following is impossible when the user manager role is granted:
- Accessing the "My account" page
- Performing any actions that need authorization (e.g. leaving a proposal or voting for budget, when they are limited to a certain authorizer)
This proposal has been accepted because:
This incidence has been solved. Closed via #5383.
Thank you for contributing!
Report inappropriate content
Is this content inappropriate?