Warnings for changing GroupAdmins
The Permission readWrite
for /groups
is the ultimative privilige at the API, granting a user to arbitrarily change permissions of all other users for all resources.
To make sure this permission is not granted to anyone by accident, it should be handled seperately from the other permissions and the admintools should add warnings when changing the permissions of a user towards this state. In particular:
-
/groups
should be seperated in the Group Editor UI from all other permissions and marked red, together with an explanation - there should be a dialogue asking for confirmation when adding
readWrite
access to/groups
for a group - there should be a dialogue with an explanation when adding a user to a group that has
readWrite
access to/groups
. - there should also be a confirmation dialogue when a user attemps to remove himself from such a group, warning him of loosing access