On busy websites with many users, it becomes essential to be able to delegate some tasks, for example the management of the user's roles. As it is, you can give the 'administer access control' to the users who will be in charge of managing the user's roles, but this also allows them to access all the access control pages, including the access control page!
The RoleAssign module creates this permission, but I believe this feature would be useful in the core, as opposed to having to use an extra module for such a basic feature. (see the desription of the module for more information).
Here is a statement of the access control page.
Permissions also allow trusted users to share the administrative burden of running a busy site.
No doubt this extra permission would extand the flexibility of sharing the administration of busy sites.
This patch adds a new permission 'assign roles' and replaces the
administer access control by
assign roles where needed in the user.module:
- user_user_operations (select options generation)
- user_user_operations (callback)