If I give a user the user_admin_role they can then administer other users (give them new roles etc). But I find that they can also amend themselves - e.g. they can give themself the super_admin_role.
Is there a way to ensure that they can only administer users & not give themselves new rights?
Thanks, Chris