It would be beneficial to restrict the ability to forward approval emails to other users who are not authorized to approve. Currently, the intended approvers can forward these emails, allowing unauthorized users to view sensitive details and complete the approval process.
Moreover, the system records the approval as if it was completed by the correct approver, which can lead to compliance and accountability issues.
Could we explore options to prevent this behavior and ensure that only designated approvers can take action?
