security for system.user entity access

I am trying to understand the security of system.user entity access where it has 2 module roles administrator and user with read for name attribute read/write for password nothing for the other attributes how it is valid while if assigned the administrator module role to any user role , it will be able to read/write the other attributes like active,blocked,anonymous
2 answers

If I remember correctly, part of the security of the system module is "hard coded" in Mendix and cannot be expressed in the model using the security DSL. This is because the system module has some special properties (necessary for running a Mendix application) that "normal" user modules never have.


Check this screenshot.

In project security, for “Administrator” userrole, we provide system.administrator role.

Then in the Edit popup, we have the check box checked. 

For “User” userrole, this checkbox will be checked off.