Changes between Initial Version and Version 1 of Ticket #2034


Ignore:
Timestamp:
Oct 19, 2016, 1:07:24 PM (6 years ago)
Author:
Nicklas Nordborg
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #2034

    • Property Status changed from new to assigned
    • Property Owner changed from everyone to Nicklas Nordborg
  • Ticket #2034 – Description

    initial v1  
    22
    33A user with ANNOTATE permission would then be able to modify annotations but not regular properties. It would also be possible to control which annotations the user can modify and which should be read-only by setting permissions on the annotation type (requires that #2033 is fixed so that the annotation type permission is checked).
     4
     5After thinking a bit about this I think we should be able to re-use the existing RESTRICTED_WRITE permission. It is a hidden permission that is only used for User items so that a user may change some parts of their own data (such as password, email, etc) but not quota, group or role membership (which require full WRITE permission).
     6
     7The RESTRICTED_WRITE permission currently implies USE permission but it should be safe to remove that connection since it is not used on user items.