As an Administrator, I want to give Site Builders permission to Regional Date/Time Settings, but not all permissions from 'Administer site configuration'

[aleayr]

To give Site Builders access to change their own Date/Time settings, requires the 'Administer site configuration' permission.

This also gives users a whole raft of additional access that we don't wish to provide them. Is there a way to include or exclude permission items.

As an indicator, this is what 'Administer site configuration' gives users:
File system
Image Toolkit
RSS Publishing
Maintenance Mode
Performance
Logging and errors
Regional settings
Date and time
Clean URLs
Site information
Cron
Status report

Bold items are ones we're happy to give people if we can carve them out into a separate permission item.

[aleayr]

Comment by @jozhao:

As discussed, we have two options:

• Custom permissions module - this way opens a window that each site may set own custom permissions or we can limit this only under platform admin (uid 1) https://www.drupal.org/project/config_perms (stability and scalability risk?)
• Limit this in govCMS codes - we strict managing such permissions and we can revert or deploy via product release.

[aleayr]

We're working through opening up permissions through more extensible module/permission options. This gives us the ability to lock down critical modules (specifically security ones) enabled and configured as required and open up other modules and config as required. This work should solve this requirement more broadly.