Hello everyone.
I am using Odoo 12 and found that it's very easy to arise problems with access permissions if we set a user with "Access Permissions" under Users & Settings.

I have noticed:
- User with Access Permission set, can also set all technical settings for any user;
- User with Access Permission set, can disable admin users "settings";
- User with Access Permission set, can access debug mode by entering "?debug" in url and gave access to all technical settings

Does anyone have a simple solution for this? Perhaps a link to some custom module?
 
Basically I need to know how can I easily prevent users with "permissions" access rule to:
- Edit users with permissions set to "settings";
- Prevent them from accessing Odoo with debug mode;
 
Thank you all in advance
 
Best regards
 
PM