Hide potentially dangerous stuff from non-admin users
Description
As discussed in weekly meeting 20130710:
Functionality provided by e.g. Window Customization can have an impact on the security of the system because it might be misused.
A possible solution is to flag certain windows / forms / processes to be security related and therefore not being automatically attached to a role (especially not the automatically created clientxyzAdmin role) but only through manual intervention (by SuperUser?).
As discussed in weekly meeting 20130710:
Functionality provided by e.g. Window Customization can have an impact on the security of the system because it might be misused.
A possible solution is to flag certain windows / forms / processes to be security related and therefore not being automatically attached to a role (especially not the automatically created clientxyzAdmin role) but only through manual intervention (by SuperUser?).
WDYT?
Regards,
Dirk Niemeyer