featurehub icon indicating copy to clipboard operation
featurehub copied to clipboard

Published 20 hours ago verified publisher icon featurehub-io

Prevent Portfolio Admins trying to change their own roles in a group as they can’t change it anyway

Open rvowles opened this issue 4 years ago • 2 comments

When a portfolio admin tries to edit their roles in environments, they should be shown them all as being ticked and should not be able to edit them. Any changes will be ignored as portfolio admins always have all access to all environments.

rvowles avatar Jul 17 '20 08:07 rvowles

Also, if a group has only one permission Create/Edit/Delete - they should have "read" permission also included by deafult.

IrinaSouth avatar Sep 20 '22 09:09 IrinaSouth

to future me: The effect of having a Create Feature permission but no access to even read in any environment means they cannot even see the application. We should realistically deny them the ability to allow a group the ability to create features that have no permission to even read any environment. We should ensure this stays enforced so they can't update the group to deny access to all environments yet still have create and/or edit feature permissions.

rvowles avatar Sep 20 '22 19:09 rvowles