Should auditors have to re-enter their password to see all resources
Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.
Auditors can see everything on an instance, but they cannot access the admin panel.
For admins, we require them to re-enter their password (since !16981 (merged)) for them to be able to access the admin panel.
In !18530 (merged) we will also be hiding the resources they wouldn't normally see. They would have to re-enter their password and enable admin mode to see those resources.
Should auditors go through the same treatment and have to re-enter their password to see resources they don't have access to through memberships?
The following discussion from !18530 (merged) should be addressed:
-
@dlouzan started a discussion: (+1 comment) @reprazent @ifarkas Btw, now that I've seen some EE code, you might want to have a look internally at how the admin mode should interact / work for auditors, I had no idea those existed.
Maybe it doesn't even apply, but some food for thought :-)