docs/system-admin-guide/users-permissions/users-permissions-faq/README.md
If you are using the Enterprise cloud and the user you are trying to delete is the user that initially set up OpenProject, you will need to contact us to delete this user. For other users please make sure the box User accounts deletable by admins in Administration -> Users and permissions -> Settings is checked.
There are two possibilities:
There is no built in way to do that.
The best way of achieving the result is via the API v3 by fetching users based on their creation date and for every newly created user, assign the roles that a new user should have. Starting with OpenProject 11.2 this is also possible for global roles.
When a user is deleted his/her change history is preserved. All actions made by him/her are attributed to a user called Deleted user. E.g. a work package created by that user or a wiki page updated by him/her will remain unchanged. This means that you can continue to work with all work packages etc.. If you delete at least two users, you will no longer be able to identify which change was made by whom, as everything will be aggregated under the Deleted user user. Only information that is stored for the sake of the user alone, e.g. private queries or user preferences, will be deleted.
It is possible to give users the ability to change status without that user having the rights to edit the rest of the work package. To do that you need to grant the Change work package status permission to the role this user is assigned.
No, only Administrators can delete other users.
No, only Administrators can update other Administrators attributes like name or email. This is to prevent the possibility of a user with "Edit users" global permission impersonating an Administrator by changing the email address to match theirs.
You can set a default role that users with this permission will have in a project they created.
This is UX bug tracked in #50123.
Project permissions controls what a user can see and do within a project scope. Project permissions are attached to project roles. You can grant a user a permission in a specific project by giving the user one or more project roles in a specific project.
Examples for project permissions:
Global permissions are system wide. They are attached to global roles and controls what a user can do and see independent of a specific project memberships.
No this is not possible. You need to create a new role instead.
Permissions related to the external file storages are part of the Projects and Work packages and Gantt charts:
Following are the permissions for file storages within OpenProject:
Following user permissions are set on files and folder in External Storages:
Automatically managed folders: Read files (Nextcloud, OneDrive)
Automatically managed folders: Write files (Nextcloud, OneDrive)
Automatically managed folders: Create files (Nextcloud)
Automatically managed folders: Delete files (Nextcloud)
Automatically managed folders: Share files (Nextcloud)
[!NOTE]
Please note that not all file permissions are applicable to all storage providers.