I would like to know if this problem I’m experiencing has a solution.
opened 12:52PM - 15 Jun 24 UTC
closed 04:58PM - 23 Jul 24 UTC
flag: question
## Bug report
### Required System information
- Node.js version: v20.0.0
… - NPM version: 9.6.4
- Strapi version: 4.24.4
- Database: mySQL
- Operating system: Mac OS
- Your project is Javascript or Typescript: JavaScript
<img width="761" alt="image" src="https://github.com/strapi/strapi/assets/111140851/31e8391e-dae9-4ec4-9f9f-a22726ded911">
### Describe the bug
Well, I'm trying to configure some roles for my project, currently two roles were created:
Super Admin
Super Admin Client
The idea here would be to have a project in which I have N clients and each client can register 1 editor user and he can register as an admin, that is, he can register a new role for the editor and register a new user.
The table access part is working normally and each client only sees its records.
However, there is something strange about configuring roles and users, because even though it is configured to only have access to data that he created, he can see the complete list of roles and users.
In other words, he can see the list of roles that the Super Admin has registered and their users and customers.
### Steps to reproduce the behavior
1. Go to the Settings page
2. Create a new Role
3. In the Settings tab, access the Roles & Users link
4. Select all
5. Access the Settings button
6. Create the rule to "can create / read / update / delete" only "is creator"
### Expected behavior
The expected behavior in my opinion would be, if configured in the Roles & User section with the "is creator" filter, it would display roles and users that are the owner.
### Screenshots
Super Admin
<img width="1244" alt="image" src="https://github.com/strapi/strapi/assets/111140851/25ba98f6-7b00-4d96-afac-afca4e15385f">
<img width="1197" alt="image" src="https://github.com/strapi/strapi/assets/111140851/c3fe25c6-a582-4238-91da-b6e3cbe138cb">
<img width="1233" alt="image" src="https://github.com/strapi/strapi/assets/111140851/c1c46c4b-cab4-4e19-bfb4-69ffafeee027">
<img width="1290" alt="image" src="https://github.com/strapi/strapi/assets/111140851/09c765b3-9095-4185-ba09-09d1d4ad46b4">
Client
<img width="1721" alt="image" src="https://github.com/strapi/strapi/assets/111140851/750f2036-a823-4e71-a60f-c211f3ac048f">
<img width="1726" alt="image" src="https://github.com/strapi/strapi/assets/111140851/a826d370-943a-4506-95fe-1c505cda53b1">
### Code snippets
I opened some discussions on Discord and Forum here
https://discord.com/channels/811989166782021633/1019655562092355594/threads/1250754131711234098
https://forum.strapi.io/t/how-to-configure-roles-admin-editor/39129
### Additional context
I also tried to make other personalized changes, but without much result as the log for the functions that were created did not even load, and following the doc creating just this structure, Strapi would import these files and apply them. And listing the current polices that I created "api::user-permissions.is-super-admin-or-client-super-admin", is in the list but the logs that were placed in it are not displayed when expected.
<img width="644" alt="image" src="https://github.com/strapi/strapi/assets/111140851/92f78681-1259-4afd-ae23-789c3774d5c6">
This topic has been created from a Discord post (1296076853882126356) to give it more visibility.Join the conversation on Discord