I would like to present the team work we did on the delegation part, first thank to @giacomo and @edoardo_spadoni for their supports and tips
the delegation of roles is group based, root and members of domains admin group should have the full access permission, other groups are at the beginning only granted to the dashboard, settings (only password change) and about pages.
The only difference between root and the domains admin group is about the delegation part, only root can delegate the roles, we worried about permission escalation if other administrators can grant permission to another group.
Inside the group panel you have two drop down menu like you can see on the screenshots
I know it has been widely tested and it’s ready for deploy also on Enterprise machines.
I cannot find instructions on how to install this package, could you please provide me instructions about how to install delegation?
I would like to use it to leave customers access with an admin user, but I want to hide “Software Center”, to avoid installation of packages that could cause the server to crash, or packages that this customer must not use.