Since we're using ACL to test conditions in actions and toolbar buttons, I think it's time to build a proper usergroup structure versus the default one for the CMS. This should probably mimic the current structure (this is discussable), which I think is something like this:

Groups without backend access:

• Registered to Joomlacode: allowed to submit reports, allowed to comment on all items, allowed to upload files to self submitted items, allowed to edit data on self submitted items
• Registered to Joomlacode and added to Bug Squad group: allowed to submit reports, allowed to comment on all items, allowed to upload files on all items, allowed to edit data on all items

Groups with backend access (Bug Squad leadership, PLT, whomever else they decide to give access to)

• Something like a view-only access (can see issues, can see reporting data if/when that gets built)
• Next level up allows someone to manage the issues via backend, and this is where delete and move functionality is present
• Next level up allows above plus ability to manage the fields structure (com_categories basically)
• Ability to manage com_users somewhere in here
• Highest level is super admin (Mark & JM type folks)