I'm tackling an issue related to the expiration date in Traccar. In a scenario where a user assumes a managerial role, they are granted a 1-year expiration period and can manage up to 2 subordinate users. However, there appears to be a significant loophole in this setup. The manager can essentially render their own expiration date meaningless by generating new user accounts, assigning arbitrarily lengthy expiration dates to them, and then transferring their devices to these new accounts. This loophole allows the manager to retain control even after their original account's expiration.
To address this concern, I propose a solution. The system could be modified to restrict managers from extending the expiration dates of their subordinate users beyond their own manager account's expiration date. This approach would ensure that the manager's privileges are inherently tied to their own account's validity period. By implementing this limitation, the issue of managers evading expiration limitations could be effectively resolved.
I'm tackling an issue related to the expiration date in Traccar. In a scenario where a user assumes a managerial role, they are granted a 1-year expiration period and can manage up to 2 subordinate users. However, there appears to be a significant loophole in this setup. The manager can essentially render their own expiration date meaningless by generating new user accounts, assigning arbitrarily lengthy expiration dates to them, and then transferring their devices to these new accounts. This loophole allows the manager to retain control even after their original account's expiration.
To address this concern, I propose a solution. The system could be modified to restrict managers from extending the expiration dates of their subordinate users beyond their own manager account's expiration date. This approach would ensure that the manager's privileges are inherently tied to their own account's validity period. By implementing this limitation, the issue of managers evading expiration limitations could be effectively resolved.