Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Organizations may define an Admin user #222

Closed
yankedev opened this issue Sep 21, 2016 · 1 comment
Closed

Organizations may define an Admin user #222

yankedev opened this issue Sep 21, 2016 · 1 comment
Labels
admin area enhancement

Comments

@yankedev
Copy link
Contributor

To simplify user management, an organization should be able to define a list of admin users (the first user of an org is org-admin per default).
Select a checkbox to make a user admin of the organization (this operation can only be executed by system admin and other organization admins).
Organization admins are able to reset the password of users in the same organization.

Question: as all org-admin users will get the same role, we should always check that it has this role for the organization he wants to change the data.
How could this be done? Is there a way to define this type of rule in SpringSecurity?
@yankedev
Copy link
Contributor Author

it is already implemented.
I have not yet been able to test the security that an owner can only modify (reset password) users of its own organization.

but the feature is complete :-D

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
admin area enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@yankedev