Members of the admin portal should not modify developer accounts and user details
Issue
- Members of the 3scale admin portal can modify applications but also developer accounts and user details. How can this right be revoked?
- A member user can modify the access of a developer user to a Service even though the member user doesn't have rights to that Service.
Environment
- Red Hat 3scale API Management
- 2.14 On-premises
- SaaS
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.