[Zope3-checkins] CVS: Zope3/src/zope/app/securitypolicy - configure.zcml:1.9

Philipp von Weitershausen philikon at philikon.de
Fri Mar 19 13:39:42 EST 2004 

Update of /cvs-repository/Zope3/src/zope/app/securitypolicy
In directory cvs.zope.org:/tmp/cvs-serv24672/securitypolicy

Modified Files:
	configure.zcml 
Log Message:
* grant newly defined undo permissions

* clean up and comment grant directives. We have to think about whether
  it's wise to grant permissions that have been defined elsewhere in
  the securitypolicy package...

* include meta directives config file at the app level


=== Zope3/src/zope/app/securitypolicy/configure.zcml 1.8 => 1.9 ===
--- Zope3/src/zope/app/securitypolicy/configure.zcml:1.8	Sat Mar 13 18:01:07 2004
+++ Zope3/src/zope/app/securitypolicy/configure.zcml	Fri Mar 19 13:39:41 2004
@@ -13,7 +13,7 @@
                alias="zope.products.securitypolicy" />
 
 
-  <include file="meta.zcml" />
+
 
   <content class=".permissionroles.PermissionRoles">
     <require permission="zope.Security"
@@ -82,21 +82,27 @@
   <role id="zope.Member" title="Site Member" />
 
   <!-- Remove the following directive if you don't want public access -->
-  <grant permission="zope.View"                role="zope.Anonymous" />
-  <grant permission="zope.app.dublincore.view" role="zope.Anonymous" />
+  <grant permission="zope.View"                  role="zope.Anonymous" />
 
-  <grant permission="zope.View"                  role="zope.Manager" />
-  <grant permission="zope.app.dublincore.view"   role="zope.Manager" />
-  <grant permission="zope.app.dublincore.change" role="zope.Manager" />
   <grant permission="zope.ManageContent"         role="zope.Manager" />
   <grant permission="zope.Security"              role="zope.Manager" />
   <grant permission="zope.ManageCode"            role="zope.Manager" />
   <grant permission="zope.ManageServices"        role="zope.Manager" />
   <grant permission="zope.ManageApplication"     role="zope.Manager" />
   <grant permission="zope.ManageBindings"        role="zope.Manager" />
+
+  <!-- zope.app.dublincore -->
+  <grant permission="zope.app.dublincore.view"   role="zope.Anonymous" />
+  <grant permission="zope.app.dublincore.change" role="zope.Manager" />
+
+  <!-- zope.app.mail -->
   <grant permission="zope.SendMail"              role="zope.Manager" />
 
-  <!-- Grant Manager all necessary Permissions for using Workflows -->
+  <!-- zope.app.undo -->
+  <grant permission="zope.UndoOwnTransactions"   role="zope.Member" />
+  <grant permission="zope.UndoAllTransactions"   role="zope.Manager" />
+
+  <!-- zope.app.workflow -->
   <grant permission="zope.workflow.ManageProcessDefinitions"
          role="zope.Manager" />
   <grant permission="zope.workflow.CreateProcessInstances"

More information about the Zope3-Checkins mailing list