Security issue with admin and grant/deny

Role mapping and grant deny, does not check is a user exists, simply responds with "self". in the case of implicit roles and creating an admin user, if we grant observer role to admin mapping, we can't access the server anymore since admin is mapped to observer instead of admin. This can cause potential mistakes by not having access to an admin user anymore.