ClusterResource, LoginResource, ServerResource and LoggingResource should have all privileged actions wrapped in SecurityActions