Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The admin should be able to de-activate an existing user in their organization so that when people leave they can be removed from seeing senstive financial data #8

Open
7 tasks done
kitallis opened this issue Oct 3, 2018 · 7 comments
Open
7 tasks done

The admin should be able to de-activate an existing user in their organization so that when people leave they can be removed from seeing senstive financial data #8

kitallis opened this issue Oct 3, 2018 · 7 comments
Assignees
@trycatcher

Comments

@kitallis
Copy link
Contributor

kitallis commented Oct 3, 2018
edited by scimetfoo
Loading

Acceptance Criteria:

  • Should have a button in the Admin panel in front of all users that de-activates them
  • Should not be able to de-activate themselves
  • A member should not be able to de-activate an admin
  • Should show a confirmation screen before de-activating the user to avoid accidental clicks
  • Should not remove the user from the system and should merely soft-delete / mark them as inactive
  • Should show only active users in All Users
  • Should ensure that a de-activated user can not login anymore.
@timmyjose
Copy link

Could you please assign this issue to me? Thanks!

@trycatcher trycatcher self-assigned this Jul 18, 2019
@trycatcher
Copy link
Contributor

trycatcher commented Jul 18, 2019
edited
Loading

@kitallis @dvenkatr I had added the soft-delete functionality. There's a trash-can icon that appears for each user which when clicked does the soft deletion for that user and removes them from the view. However, the All Users view, when loaded on its own displays this deleted user with a de-activated status.

We will either have to choose between:-
1> Only displaying active users. Removing the user on deletion would be consistent with this.
2> Displaying both active and de-activated users. In which case, we'll need to change the post-delete display show that the deleted user is displayed as de-activated and not removed.

I'm in favor of 1.
2 can be confusing for the admin. Either the admin will be interested in actions pertaining to active users or de-activated ones but not both together. Hence the UI should be task/status-specific and optimized for the more expected/usual case. Also 2 can lead to the admin mistakenly deleting an already deleted user. This won't cause problems but it's best we make the UI restricted to prevent it.

I suggest 1 with future modifications to toggle the All Users between active and de-activated with possible actions (Delete, Re-activate) appearing contextually.

1 would also address #13

If we go ahead with 1, we can remove the status from display as it becomes redundant then.

@trycatcher
Copy link
Contributor

@kitallis @dvenkatr Re-activation should perhaps be a separate issue and left out of scope from this?

@trycatcher
Copy link
Contributor

Done with

Also takes care of #13

@kitallis
Copy link
Contributor Author

kitallis commented Jul 19, 2019
edited
Loading

@kitallis @dvenkatr I had added the soft-delete functionality. There's a trash-can icon that appears for each user which when clicked does the soft deletion for that user and removes them from the view. However, the All Users view, when loaded on its own displays this deleted user with a de-activated status.

We will either have to choose between:-
1> Only displaying active users. Removing the user on deletion would be consistent with this.
2> Displaying both active and de-activated users. In which case, we'll need to change the post-delete display show that the deleted user is displayed as de-activated and not removed.

I'm in favor of 1.
2 can be confusing for the admin. Either the admin will be interested in actions pertaining to active users or de-activated ones but not both together. Hence the UI should be task/status-specific and optimized for the more expected/usual case. Also 2 can lead to the admin mistakenly deleting an already deleted user. This won't cause problems but it's best we make the UI restricted to prevent it.

I suggest 1 with future modifications to toggle the All Users between active and de-activated with possible actions (Delete, Re-activate) appearing contextually.

1 would also address #13

If we go ahead with 1, we can remove the status from display as it becomes redundant then.

1. sounds like the best option to me. I also agree that re-activation can be tackled later (or not at all at the moment).

@scimetfoo
Copy link
Contributor

Should only admins be able to de-activate other users (and admins)? I think that should be the case. Thoughts?

@trycatcher
Copy link
Contributor

trycatcher commented Jul 23, 2019
edited
Loading

@murtaza0xFF Yes, this ability should be available for only admins. Other users should not even be seeing this option.
More so, the Admin tab should not be visible for non-admin users. That will take care of this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@trycatcher trycatcher

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@trycatcher @kitallis @timmyjose @scimetfoo