From 87b3ea4f47e0946e94d4426707375889b31427dd Mon Sep 17 00:00:00 2001
From: Timm Fitschen <t.fitschen@indiscale.com>
Date: Mon, 22 Aug 2022 10:09:52 +0200
Subject: [PATCH] DOC: clearified admin permissions

---
 src/doc/permissions.rst | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/src/doc/permissions.rst b/src/doc/permissions.rst
index d0019c22..7f951889 100644
--- a/src/doc/permissions.rst
+++ b/src/doc/permissions.rst
@@ -108,16 +108,16 @@ Administration permissions
 
 There is one special permission rule that grants global administration
 permissions to a user or a role: ``Grant(*)P``, i.e., grant everything with
-priority. This promotes the user or group to administration level, very similar
-to the ``root`` user on POSIX systems, and no other rule can deny any permission
-from this user or role. Thus the ``Grant(*)P`` permission should really only be
-used for administration users and in no other case. So, ...
+priority. This promotes a user with this role to administration level, very
+similar to the ``root`` user on POSIX systems. As with any other rule, the
+effect of this rule can be overriden by *Deny* rules with priority. The
+``Grant(*)P`` permission should really only be used for administration users
+and in no other case.
 
 .. warning::
 
-   The ``Grant(*)P`` administration permission cannot be overruled by any other
-   permission rule. Be cautious when assigning administration privileges to
-   users and roles.
+   ``Grant(*)P`` is a powerful administration permission rule. Be cautious
+   when assigning administration privileges to users and roles.
 
 
 How to set permissions
-- 
GitLab