In User Audit page system admin action links are enabled for registrar

[tiri39]

Bug description:
Registrar can click the system admin actions like - created user/ edited user/ reactivated user/ deactivated user from the history section of user audit page.

Steps to reproduce:

1. Login as a registrar.
2. Navigate to the Team page.
3. Navigate to the user audit page of any local system admin/ national system admin.
4. Click on the system admin actions (created user/ edited user/ reactivated user/ deactivated).

Actual result:
System admin action links are enabled for registrar.

Expected result:
System admin actions should be disabled for registrar.

Screenshot/Recording:

Farajaland.CRS.-.Google.Chrome.2025-02-04.18-45-03.mp4

Tested on:
https://register.farajaland-qa.opencrvs.org/

Version:
v1.7.0

[Zangetsu101]

@jpye-finch I don't think we have any separate scope for this now do we? Like if you have user:read scope you can view all the actions right?

[Zangetsu101]

Or would these actions fall under user:create / user:edit scopes perhaps?

[jpye-finch]

Yes I had it as user:update

https://docs.google.com/spreadsheets/u/2/d/1kQc-pYtftrzYoQTnB1fNxU6sI_qJzUSFrBs9fjww2aw/htmlview#

[Zangetsu101]

Just to make sure,

user.read:all -> This scope allows a user to view any user's audit page

So this only includes record related audits and not the account related ones?