Add a dedicated permission to delete identities #5226
Description
Is your feature request related to a problem? Please describe.
We currently have 2 environment-level permissions relating to identities:
- View identities
- Manage identities (create, update, delete)
In some customer scenarios, identities are highly sensitive and must never be deleted. For example, in a multi-tenant application where each identity represents a single tenant, it's usual to manage tenant-specific flags by creating identity overrides. Accidentally deleting an identity could cause, for example, customers to lose access to features that they've paid for.
It should be possible to give users access to create or update identities, but not delete them. We currently do this for features, which support the following project-level permissions:
- View project (i.e. view features)
- Create feature (create, update)
- Delete feature
Describe the solution you'd like.
Add a new "Delete identities" permission, separate from "Manage identities". This permission should be granted to anyone who already currently has "Manage identities" permission.
Describe alternatives you've considered
🤷
Additional context
No response