A superadmin should not be able to shoot himself in the foot^W^W^W^W^Wdelete or disable himself (in the list/edit admin section) because this will lock him out of postfixadmin.
This can be done by
a) not showing the delete link for the currently logged in superadmin
b) like a, but at server side before deleting the admin
c) while editing an admin, unchecking the superadmin checkbox should be impossible for the currently logged in superadmin
d) c) should also be checked server-side
Log in to post a comment.