TYPO3 Core

It would be great to have an optional right to give to non-admins to allow user-administration. This would allow them to maybe reset a password, disable/reenable a person when needed or maybe even create a new user.

In general I think that should be doable, especially since with the virtual-root-feature now also non-admins have a root :-)

Special care is needed to prevent such a user for elevating his/other persons rights without permission. So he/she would need to be limited to at maximum giving his own permissions to somebody else. When editing users the person may only modify accounts (and optionally only see those?) that don't have higher permissions than himself.

• Have an editor be member of groups A, B, C
• Give that person user-admin-rights (for non-admins)
• Person may create a new person or edit an existing one and assign that person one or more of his own groups.

The request for this came up when user-administration for a group of editors should be eased by allowing a "priviledged editor" to perform simple tasks like resetting a password.

Maybe that person could also get permissions to switch to a user for easier first-level support. ("Oh you don't see that option - I can confirm that.")