I've installed CakeDC Users plugin and I found out that role
, is_admin
don't function by default. If I login with regular username role
=registered
and is_admin
=0
, I can still go to /admin/users/add/
. Why are there two types of checks, role
and is_admin
, what if role
=administrator
and is_admin
=0
, or vice-versa?
I am looking for a preferred solution to this problem so I could secure admin section and make use of user roles on different pages. Still, can't understand why is_admin
is present, when role
=administrator
could take care of it all.