Hiya!
This one’s inspired by a recently discovered (and thankfully fixed!) bug that I came across in the last month or so. I can’t reveal the exact details of that bug though for a few complicated reasons. This is technically a security related idea, but I judge the risk to be low enough to post the idea since it’s private anyway and the related bug has already been fixed. Thanks
I also want to give some Co-Author credit to
But one thing that would really help a lot, would be better auditing and insights into exactly who has access to Control, especially on the basis of:
- Individual Users
- Roles
- Permissions
- Ranks
- Anything else that can grant Control access
In particular, having a way to quickly see this information at a glance with the ability to modify or revoke such permissions in one place would be great. A bit like how Google Workspace has a dedicated section under both Users and Admin Roles that can spit out a report of exactly who has administrator rights and therefore access to Google Admin.
As a slight bonus, perhaps also make it so that if a particular user does not access Control for a certain amount of time (such as six months), flag it up to the Administrator and/or Community Manager with a recommendation to consider whether that user still needs Control access and provide a way to revoke it if they no longer need it (along with details on exactly how/why they currently have Control permissions). You could potentially also do it in a way that works with Roles/Ranks as well - so that an entire Role and/or Rank gets flagged up if no-one who has that Role/Rank doesn’t use Control at all for X time and doesn’t have a Primary Role that already grants access, so that Moderators don’t interfere with the alerts and to help prevent false positives/false negatives on the role/rank based alerting.
This isn’t intended to automatically nuke permissions just because they’re not used - because there can be use cases where you go long periods without touching anything. But it is intended to at least let someone know about it so that a manual review can take place if needed.
