Skip to content

Different Role Object Permissions for authentik admins group #13376

Open
@chrisguen

Description

@chrisguen

Describe your question
I dont know if this is intended behaviour or a bug. I want to create a user manager role, which can modifiy users and groups but cant elevate permissions to authentik superuser. Currently users with the user manager role can add themselves and other to the authentik admin group. I tried to explicitly set the Role Object permissions to only view the authentik admin group to the user manager role, but the default user manager group permissions get added. Can I somehow prevent the user manager role from modifying users in the authentik admin group?

Version and Deployment:

  • authentik version: 2025.2.1
  • Deployment: docker-compose

Metadata

Metadata

Assignees

No one assigned

    Labels

    questionFurther information is requested

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions