When you create a customer, they are assigned a username and password to access the control panel. That control panel user is assigned the role of Owner. If you click on that user's name on the Users tab and go to Change Settings, the User role drop-down is disabled. However, if that user has an email address under the account, it's possible to change the User role from the Mail tab.
The problem is that the user can change the role to something that does not have permission to manage users and roles. And that effectively locks himself AND the Server Administrator out of the control panel for all subscriptions belonging to that customer.
As admin, I tried to click on the Control Panel link from my screen, and I got the message "Error: Access to the location account/switch is denied."
I solved this problem by digging into the database and finding the relevant tables. I got the info I needed from the smb_roles and smb_users tables. I was then able to manually update smb_users.roleId to the correct one.
This should be fixed in the control panel. The User role drop-down should be disabled on the Mail tab as it is on the Users tab for the isBuiltIn users.
Should I submit this as a feature request or is there another place to submit bugs?
The problem is that the user can change the role to something that does not have permission to manage users and roles. And that effectively locks himself AND the Server Administrator out of the control panel for all subscriptions belonging to that customer.
As admin, I tried to click on the Control Panel link from my screen, and I got the message "Error: Access to the location account/switch is denied."
I solved this problem by digging into the database and finding the relevant tables. I got the info I needed from the smb_roles and smb_users tables. I was then able to manually update smb_users.roleId to the correct one.
This should be fixed in the control panel. The User role drop-down should be disabled on the Mail tab as it is on the Users tab for the isBuiltIn users.
Should I submit this as a feature request or is there another place to submit bugs?