I have a room with X members. Every member has affiliation “owner”. Because every member should have the possibility to remove itself from the room (besides enjoying other “owner” privileges).
It seems my problem is related to or even duplicated by OF-241.
There’s even another related issue (OF-747).
After debugging some code I realized that the “actor” is not really checked, when updating the role/affiliation of an occupant. Instead the previous affiliation/role of the occupant is checked, which might throw an NotAllowedException (commented with “this should never happen… in theory…”, lol) and also commented with some TODOs to check the actor’s affiliation/role.
I’ve committed a suggested fix (which is still commented out).
Can somebody review it? I fear it could break something…