Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add admin level protection to admin operations on DB #271

Open
BenMatase opened this issue Feb 17, 2018 · 2 comments
Open

Add admin level protection to admin operations on DB #271

BenMatase opened this issue Feb 17, 2018 · 2 comments
Milestone
Sprint 6

Comments

@BenMatase
Copy link
Collaborator

No description provided.

@BenMatase
Copy link
Collaborator Author

We've discussed this and we've put a lot of trust to the regular users since they are responsible. We are only restricting admin privileges to the adding/removal of users/admins

@BenMatase BenMatase added this to the Sprint 5 milestone Mar 19, 2018
@BenMatase
Copy link
Collaborator Author

Currently, any approved user can change any row in the database. So admins are pointless as any user can escalate themselves to admin status. This could just be a small failsafe

@BenMatase BenMatase modified the milestones: Sprint 5, Sprint 6 Apr 25, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
Sprint 6
Development

No branches or pull requests
1 participant
@BenMatase