It would be nice to have an option to limit what type of users roles a specific user role has access and it’s able to create.
Right now we have this:
permissions:
users:
create: true|false
It would be quite handy to have something more granular like this
permissions:
users:
create:
- admin
- editor
please also for the other user-role changes like “changeRole” and “delete”
This could honestly be expanded as more granular control in general over users permissions. Because we could benefit from having more control over what a user can and cannot do.
In addition: At the moment the order of roles is alphabetical and it is not possible to set a standard, e.g. if you have an “editor” who should be able to add users with the role “internal” he/she have to change the role every time when a lot of “internals” are to be added. Workaround: name the user role “a_internal”…