[Bug] When creating role, user can select roles that they cannot assign

[bartvanb]

Describe the bug
A user should only be able to assign permissions to other users that are same level or lower than they have themselves. This prevents that a regular user can create a new role with more permissions and thereby elevate their own permissions.

This is currently not the case: see screenshots below, where a user can assign global permissions that they do not have themselves.

Expected behavior
In the create role component, a user can only tick boxes that they are allowed to assign

Screenshots

Top: which permissions the logged-in user (with role 'Collaboration admin') has
Bottom: which permissions they can assign

[eutj]

There is a bug in this bug report!
This is the correct screenshot when creating a role as collaboration admin:

[bartvanb]

Cool :-)
I think it might have been an issue with logging in multiple times with different users that had different permissions, and this has probably been solved by 40b0f23