In some cases it is useful, when you can define, who is allowed to set the admin role.

For example you have a role, who can edit the user settings, but is not allowed to edit the permissions. If the role can set the admin role, then the person can hijack the whole system.

I add this feature / bug fix to module. Here is the patch for it. It would be nice, if some one can add this to the code.

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Dave Reid’s picture

Status: Active » Closed (won't fix)

The module follows the same policy as Drupal 7, which is anyone with 'administer users' can change the admin role settings.