Works as indicated with Drupal 5.12.

Noticed that it is possible to edit user 1 (admin) from any user if they have been granted the role of 'administer users' in the user module.

The goal is to have user 2 administer logins. All have to be approved by the administer 2 prior to viewing the site. User 2 can delete as needed. However, user 2 can also edit users 1 password and change their status from active to blocked. Preventing the super admin (user 1) from accessing the site.

The request would be to disable the ability to edit user one by user 2 or anyone else with the role of administer users. The exception would be that user 1 could edit user 1 or any other user. User 2 with 'administer user' rights could not edit user 1, but could edit all other users.

Comments

markus_petrux’s picture

markus_petrux CreditAttribution: markus_petrux commented
Status: Active » Closed (won't fix)

It looks more like a job for a separate module, or maybe there's one already that fits your needs.

http://drupal.org/project/administerusersbyrole
http://drupal.org/project/restrict_password_change
http://drupal.org/project/userprotect
http://drupal.org/project/user_readonly

PS: Life cycle of Protect Critical Users module will probably end some day, when it gets fixed/solved/properly addressed by Drupal core itself.

Alaska’s picture

Alaska CreditAttribution: Alaska commented

You are correct. Did try userprotect along with your module and together they both work fine. Now a sub admin can not edit or delete the admin password or their own.

Thanks for the information as it is most appreciated.

Issue closed on my part.

markus_petrux’s picture

markus_petrux CreditAttribution: markus_petrux commented

Good to know. ;)