Skip to content

Group Member Lock is accessible to group members with maintainer role

Summary

Group Member Lock should only be accessible to users with the role of owner. However, it is accessible to users with the role of maintainer. According to the documentation, this should be an owner only setting.

Steps to reproduce

  1. Enable Member Lock as an owner in a group.
  2. Impersonate a user with the role of maintainer
  3. Navigate to group settings and access Member Lock

What is the current bug behavior?

Users with the role of maintainer and owner are able to access Member Lock.

What is the expected correct behavior?

Only users with the role of owner should be able to access Member Lock as stated in the documentation.

Output of checks

11.3.4-ee

Customer ticket -> https://gitlab.zendesk.com/agent/tickets/105880 (internal use)

/cc @jeremy_