diff --git a/docs/reference/operator_parameters.md b/docs/reference/operator_parameters.md
index 4ec777c7f..1076733d1 100644
--- a/docs/reference/operator_parameters.md
+++ b/docs/reference/operator_parameters.md
@@ -178,7 +178,7 @@ under the `users` key.
   `standby`.
 
 * **additional_owner_roles**
-  Specifies database roles that will granted to all database owners. Owners
+  Specifies database roles that will be granted to all database owners. Owners
   can then use `SET ROLE` to obtain privileges of these roles to e.g.
   create/update functionality from extensions as part of a migration script.
   Note, that roles listed here should be preconfigured in the docker image
diff --git a/pkg/util/users/users.go b/pkg/util/users/users.go
index 7aa5fe242..392eb5b68 100644
--- a/pkg/util/users/users.go
+++ b/pkg/util/users/users.go
@@ -119,7 +119,7 @@ func (strategy DefaultUserSyncStrategy) ExecuteSyncRequests(requests []spec.PgSy
 			if err := strategy.alterPgUser(request.User, db); err != nil {
 				reqretries = append(reqretries, request)
 				errors = append(errors, fmt.Sprintf("could not alter user %q: %v", request.User.Name, err))
-				// check if additional owners are misconfigured as members to a database owner
+				// check if additional owners are misconfigured as members to a database owner (check #1862 for details)
 				// resolve it by revoking the database owner from the additional owner role
 				if request.User.IsDbOwner && len(strategy.AdditionalOwnerRoles) > 0 {
 					if err := resolveOwnerMembership(request.User, strategy.AdditionalOwnerRoles, db); err != nil {
@@ -160,13 +160,9 @@ func (strategy DefaultUserSyncStrategy) ExecuteSyncRequests(requests []spec.PgSy
 
 func resolveOwnerMembership(dbOwner spec.PgUser, additionalOwners []string, db *sql.DB) error {
 	errors := make([]string, 0)
-	for _, groupRole := range dbOwner.MemberOf {
-		for _, additionalOwner := range additionalOwners {
-			if additionalOwner == groupRole {
-				if err := revokeRole(dbOwner.Name, additionalOwner, db); err != nil {
-					errors = append(errors, fmt.Sprintf("could not revoke %q from %q: %v", dbOwner.Name, additionalOwner, err))
-				}
-			}
+	for _, additionalOwner := range additionalOwners {
+		if err := revokeRole(dbOwner.Name, additionalOwner, db); err != nil {
+			errors = append(errors, fmt.Sprintf("could not revoke %q from %q: %v", dbOwner.Name, additionalOwner, err))
 		}
 	}