Despite having user IDs listed as admin or mod in the config, a mod logging into the admin panel makes him an owner in game.

As I understand, there is ID auth and password auth for the panel, but the ID auth doesn't seem to work at all.






#Let's assign roles (you can modify them and create custom roles below)
#UserID format is SteamId64Here@steam, DiscordUserIDHere@discord, etc...
Members:
76561198209507012@steam: owner
76561198252927118@steam: admin
76561198892739575@steam: moderator

#Should Secret Lab development staff be able to use the Remote Admin?
enable_staff_access: true

#Should Secret Lab CEO and managers be able to use Remote Admin? (We do not abuse our powers)
enable_manager_access: true

#Allow remote admin access for the banning team, to allow them searching and fightung cheaters globally
enable_banteam_access: true

#Enable reserved slots for the banning team (they are restricted by reserved slots limit set in the gameplay config)
enable_banteam_reserved_slots: true

#Allow the banning team to bypass georestrictions on the server
enable_banteam_bypass_geoblocking: true

#Let's define roles
#use color "none" to disable badge
#you can add own roles too
#cover means that this local badge is more important than a global badge and will cover it
#hidden means that this local badge is hiddeny by default (always you can use "hidetag" and "showtag" commands in game console or text-based remote admin)
#kick_power is the power for kicking and banning that the member of this group has (can be from 0 to 255)
#required_kick_power is the required kick power to kick or ban a member of this group (can be from 0 to 255)

owner_badge: Server Owner
owner_color: red
owner_cover: true
owner_hidden: false
owner_kick_power: 255
owner_required_kick_power: 255

admin_badge: Administrator
admin_color: cyan
admin_cover: true
admin_hidden: false
admin_kick_power: 50
admin_required_kick_power: 50

moderator_badge: Moderator
moderator_color: green
moderator_cover: true
moderator_hidden: false
moderator_kick_power: 25
moderator_required_kick_power: 25

supporter_badge: Supporter
supporter_color: yellow
supporter_cover: true
supporter_hidden: false
supporter_kick_power: 0
supporter_required_kick_power: 1

#And add them to the roles list
Roles:
- owner
- admin
- moderator
- supporter

#Let's setup permissions for roles
#More info can be found on our wiki: https://en.scpslgame.com/index.php/Docs:Permissions
Permissions:
- KickingAndShortTermBanning: [owner, admin, moderator]
- BanningUpToDay: [owner, admin, moderator]
- LongTermBanning: [owner, admin]
- ForceclassSelf: [owner, admin, moderator]
- ForceclassToSpectator: [owner, admin]
- ForceclassWithoutRestrictions: [owner, admin]
- GivingItems: [owner, admin, moderator]
- WarheadEvents: [owner, admin, moderator]
- RespawnEvents: [owner, admin]
- RoundEvents: [owner, admin, moderator]
- SetGroup: [owner]
- GameplayData: [owner, admin]
- Overwatch: [owner, admin, moderator]
- FacilityManagement: [owner, admin, moderator]
- PlayersManagement: [owner, admin]
- PermissionsManagement: [owner]
- ServerConsoleCommands: []
- ViewHiddenBadges: [owner, admin, moderator]
- ServerConfigs: [owner]
- Broadcasting: [owner, admin, moderator]
- PlayerSensitiveDataAccess: [owner, admin, moderator]
- Noclip: [owner, admin]
- AFKImmunity: [owner, admin]

#Set to "none" in order to disable password.
#WE DON'T RECOMMEND USING PASSWORD!!!
#SETUP STEAMID AUTHENTICATION INSTEAD (of the top of this config file)!
override_password: [Nope]
override_password_role: owner

#Allows running central server commands (they are prefixed with "!") using "sudo"/"cron" command in RA (requires ServerConsoleCommands permission).
#Don't turn on unless you fully trust all people with this permission, they needs to run that commands from RA and you know what are you doing
allow_central_server_commands_as_ServerConsoleCommands: false