Add the ability for an Admin to "lock" a user to permission level
Problem to solve
Sometimes there are users who need to be locked at a particular permission level and there's no way to do this. It can be policed via the Audit Log, but there's no way to prevent it from happening.
Intended users
- Delaney (Development Team Lead)
- Sidney (Systems Administrator)
Further details
Customer Use Case
We just want to be able to put an ‘administrative hold’ on a particular user such that no one (but administrators) can change their access permissions on any project or group. That way they can continue with using the projects they currently used, but can’t get added to any new projects. The Group Lock and Member Lock functionality is almost too restrictive and prevents all users from joining. Greater specificity is needed especially in existing groups where they want to ensure that a Developer
user can't be promoted to Maintainer
or Owner
.
Proposal
Add a flag to the user in the Admin panel to lock a user to their current permission level in all their existing groups and prevent them from being invited to a new group.
Permissions and Security
This would require Admin level access.
What is the type of buyer?
Enterprise level customers