The issue is that “Edit Permissions” function allows users to make any permissions changes, including adding admin roles. Some users have been abusing this by adding collaborators as Admins and then publishing on their own.
We're curious if it would be possible to add some logic to the permissioning so that the role would only be able to edit permissions at the level of a contributor plus or below, but not to be able to edit above their permissions role (i.e., curators, admins)? Would this be a possibility?
Any feedback would be very helpful.
Thanks,
Meghan
Borealis Team
--
You received this message because you are subscribed to the Google Groups "Dataverse Users Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to dataverse-commu...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/dataverse-community/7e25a12d-d094-4f68-8135-dc8c7ada83e2n%40googlegroups.com.