With the new View as Role feature, only server administrators can view a server as a role. In my eyes, this defeats the point of the feature somewhat. It's not uncommon for users who are not administrators on a server to manage permissions systems for that server since they have the manage roles permission.
The concern of potential priviledge escalation can be avoided by only allowing a user to view a server as the maximum role they have, similar to the way roles work now. In the screenshot below, the highest permission I can assign is backend dev, because I am only a moderator, regardless of the fact there are roles above that (eg founder).
Cheers - 0x5444
Yorum yazmak için lütfen oturum açın.