Enable GENERIC_READ by default for new roles.

Is it possible to create SecurityActions in such a way that the Generic Read is always set to true?

We need this so we can allow users by default and let admins remove access if neccesary.

We wanted to have the Generic Read hidden and use new security actions called Disable function A, Disable functoon B, etc..

Thanks.

I am not sure I understand the use case.

If a user creates a new role, there is no functionality in the Management Client to set the read permission automatically.

If you on the other hand creates a role by code using Configuration API or similar you can also manipulate the permissions through your code.