administrator

[wielki]

I created some new profile: employer, employee so I have got:
Administrator
employer
employee


And I have added for employer access to admin site 'Employees site' and he can...... turn off log in for Administrator (and maybe even delete Administrator).

I think this isn't good solution ;] Admin is admin - this is the most important person and nobody should have the right to turn off log in or delete admin.

[wielki]

Will You do something with this ?

[Patric]

"Admin" is an account which has all permissions. If you create another account like this,he'll have the same rights, this is normal.But maybe I didn't understand what you mean...

[wielki]

ok I have 3. profiles:

- Administrator
- employer
- employee

This is mine admin panel for employer:
http://img15.imageshack.us/my.php?image=09112009124442.png

Employer disabled log in for Administrator - now Administrator can't log in to control panel. How can I create that any user can't disabled log in or deleted Administrator ?

[wielki]

English isn't my nation language so maybe again mine explain isn't clear ?

[Patric]

In PrestaShop, every employee is an employee, even the members of the Administrator profile. If you don't want that an employee who doesn't belong to the Administrator group to be able to disable the Administrators, you'll have to remove them the Edit and Delete rights on the Employee tab.

But you are right, should be better that things would happen like you say...

[first1]

still good enough, you can still achieve what you want with the current system.
Admin will always have access to the database itself from the back end, and can add himself at anytime straight to the database if something goes wrong. what is the problem

[Taara]

Hi wielki,

It is batter that system should behave automatically as you said. But Prestashop gave a lot more than we all know.
If you are creating another profile then you should give them proper permissions which belong to them.
If a group called "Employer", should not have the rights to edit or delete administrator then you should Create a Profile and then by Permission tab gave them the proper rights. It is amazing. If you want that certain tabs should not appear in-front of some group you can even manage that by just assigning Permissions to that group.

[wielki]

Taara:
"If you are creating another profile then you should give them proper permissions which belong to them.
If a group called “Employer”, should not have the rights to edit or delete administrator then you should Create a Profile and then by Permission tab gave them the proper rights. It is amazing."

lol Taara, I have tested it again in prestashop 1.2.2 and you are wrong - it isn't possible.
I have hope that it will be possible in new version of prestashop

[first1]

what is not possible?

[wielki]

it isn't possible to make that nobody could delete or tun off admin

[first1]

anyone with back access to cpanel (mysql) can do anything including turning off admin.

[first1]

I dont see the issue here, admin has access to mysql (which can do anything) and employer has access to the employees, that is all you need! am i not correct?

[wielki]

Yes, admin has got access to database where he can add yourself (when somebody delete him) but situation that somebody can delete admin in backend application of prestashop shouldn't have place.

[first1]

you can always make another group that have all the rights appart of deleting employees.
so that way no one can delete the admin.
I dont see it as a problem