- Notifications
You must be signed in to change notification settings - Fork1.1k
custom roles: feature request to allow the unassignment of the "member" role#21351
rowansmithau started this conversation inFeature Requests
-
related:#21349 At present it is not possible to unassign a user from the "member" role, as a result all users receive very generous permissions by default which does not follow the principle of least privilege. As the RBAC system adds permissions granted in custom roles on top of / in addition to those granted by custom roles and does not allow for the use of the negate function it is not possible to remove permissions / functionality from users. Please allow for the unassignment of the "member" role so customers can follow principle of least privilege and effectively use custom roles within organizations. |
BetaWas this translation helpful?Give feedback.
All reactions
Replies: 0 comments
Sign up for freeto join this conversation on GitHub. Already have an account?Sign in to comment
Category
Feature Requests Labels
enterpriseEnterprise-license / premium functionality customer-reportedDO NOT USE. Instead, add to the project and fill in "Customer". customer-requestedDO NOT USE. Instead, add to the project and fill in "Customer". needs-evaluationUse this label on feature requests that require joint evaluation by Product and Engineering teams. customer-feedback
1 participant