Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-16549

Should not be able to remove moodle/site:doanything from the Administrator Role, or add it to other roles

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 1.9.2, 2.0
    • Fix Version/s: 2.0
    • Component/s: Roles / Access, Usability
    • Labels:
      None
    • Affected Branches:
      MOODLE_19_STABLE, MOODLE_20_STABLE
    • Fixed Branches:
      MOODLE_20_STABLE

      Description

      It's crazy that you can edit the Administrator role. It's extremely dangerous and can lead the primary administrator to being locked out of their site. I can't think of a situation where (if you wanted a different administrator-like role) that you wouldn't create a new role or a copy of the administrator role. Additionally it should not be possible to unenrol the "primary" administrator from the administrator role.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Votes:
                  6 Vote for this issue
                  Watchers:
                  6 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:
                    Fix Release Date:
                    24/Nov/10