I have a customer that have some support-staff that should only be able to access customers and media in Backoffice. They need to be able to access the customer to check on the data, and to administer images in Media connect to the customer. However, when you give them access to Customers-module, they also get access to groups.
In groups, they can just add themselved to the “all permissions group” and get full backoffice access to parts where they should not have access.
Is there no way to limit their accounts so they cannot manipulate their own accounts under “Groups” ?
Maybe “Customers” permission needs to be split into Customers / Groups / Organizations ?
Litium version: 6