Skip to main content

Security and privacy

Why is it possible to allow actions for sub-roles, even if one didn't has the permission himself?