Hi @jimi
Yes that new flag will prevent specific users from being the target of a sudo_as, in the GUI and in scripts.
Using sudo_as all the time in the context of user interactive session seems a bit dangerous. Are you using a Script Name / Api Key combo to do those sudo_as calls ?
In my programmer-who-does-not-work-in-a-production-environment’s mind, sudo_as is meant to be used by back-office (and server-side) processes (where the name/key are well protected), or by an admin to trouble-shoot some user’s issues.
Having a script or a user being able to do a sudo_as action is a potential security risk.
-Patrick