I noticed that any user logged into a device can access the config screen and therefore make changes to the settings. For example, a basic staff user could give themselves permission to owner or timeclock reports, etc.
Is there a way to stop this?
QMX-Server needs to have auth/login feature. Will implement soon. Nothing you can do right now.