permission api should be clearer
Ticket
+tags
+commit
+solution
This is from permission+tips:
- in general, an attempt to update a card that doesn't exist will fall back to the create action and use the create permission.
- changing a card type requires permission to delete the old card and create the new
- one special case in inheritance is adding new children to an existing parent. In the example above, this would be like editing an Audition later to add some missing information, like, say, the timeslot. Since, in this case, creating the child is akin to updating the parent, then whenever the child is set to inherit update permissions, it inherits them from the parent's create permissions.
- the commenting overhaul blueprint proposes to get rid of the *comment setting, so that this will no longer be considered a separate permission. (instead comments will have full CRUD permissions based on a +*comment card).
I needed to change the read permission from the console, and I struggled to figure out how to do it.
self.permissions = ... ?? do you have to set all of them? set_reader? Not to be arrogant but if it causes *me* this much trouble that's a very bad sign. --LWH
I think there was a simple way to do it, but I would need to document that.
--Ethan McCutchen.....Wed Dec 10 14:11:26 -0800 2008
Lew, does this server your needs? permissions+tips
--Ethan McCutchen.....Thu Apr 30 10:04:41 -0700 2009
excellent.
--Lewis Hoffman.....Thu May 28 11:26:54 -0700 2009