I'm trying to give my moderator user group (Joomla group) the ability to modify user accounts (update email addresses, passwords, etc.) on the back end (preferably in CB User Manager, I assume). I have the following permission settings, and while they can access the CB User Manager, they cannot make updates because there is no "SAVE" / "CANCEL" button at the top of the page.

Global Config:

• Site Login - Allowed
• Admin Login - Allowed
• Offline Access - Not Allowed
• Super User - Not Allowed
• Access Administration Interface - Allowed
• Create - Allowed
• Delete - Allowed
• Edit - Allowed
• Edit State - Allowed
• Edit Own - Allowed

Joomla User Manager:

• Configure - Allowed (Super User)
• Access Administration Interface - Allowed (Super User)
• Create - Allowed (Super User)
• Delete - Allowed (Super User)
• Edit - Allowed (Super User)
• Edit State - Allowed (Super User)

Community Builder:

• Configure - Allowed (Super User)
• Access Administration Interface - Allowed (Super User)
• Edit - Allowed (Super User)
• Edit State - Allowed (Super User)

I think this is already too many permissions, but I kept ramping it up and ramping it up with more and more "allowed" actions. Even turning "Super User Access" to enabled (in the global config panel), they cannot make changes in CB User Manager. (nor in any other component area)

J 3.2.2 and CB 1.9.1

Here is a screenshot of the user with the above permissions inside the CB User Manager. There is no save button on the top right.

So they can click a user and get to the users edit page within CB > User Management

No, they don't click anything. I had to provide them the direct URL to that admin screen. There is no other menu system on the back end with these permissions, but if they happen to know the URL to the Joomla user manager, they can access that as well. If I did not increase permissions on the regular user manager, they could not access the CB User Manager.


Also note.... with the "Global Permission > Access Admin Interface" set to "allow", they ended up being "Site Admin" on the Kunena forums (name listed in red), and they then had access to the two categories that are reserved for the site's actual administrators. Nonetheless, they were still not "Site admin" on the back end. When I downgraded the "Admin Interface" back to "inherited", they no longer had access to the front end stuff that they should not have had access to.

Ok. Is there a way to give them access on the front end to change user's email addresses and/or passwords?

I've tried these settings in CB Config > Moderation tab:
Moderator Groups: (correct group set) <-- btw, this is a plural (groups), but you cannot add more than 1. I wish it were ACL capable, or at least capable of selecting more than 1 user group
Allow Moderators to Edit User Profiles: "CB Moderators and levels above"


But, on the front end, when they go to a user's profile, and click edit, they get this message:
"You cannot edit a `registered`. Only higher-level users have this power."