On 28-Jan-06 13:46, Karoly Negyesi wrote:
* Disabling changes to usernames and passwords of administrative users by users having administer users permission.
I smell hiearchical roles here. Some user ought to be able to change other users psswords... including admins... I guess at least.
Yes indeed some user must be able to change these attributes of _all_ users. Here is how I am planning on doing this to KISS and avoid using taxonomy or hierarchical roles in the short term. Was planning to add a setting to the user setting page allowing the selection of a role (or none) where users are given the ability to modify usernames and passwords of every user in the system. None: everyone with administer users permission can edit all users <role>: users with selected role are given the ability to edit all users. users with administer users permission can not change username and password of those with the selected role. Any troubles with the above? -- Sammy Spets Synerger Pty Ltd http://www.synerger.com/