[ZDP] BackTalk to Document Zope Developer's Guide (2.4 edition)/Appendix A - Zope Core Permissions

webmaster at zope.org webmaster at zope.org
Mon Jun 21 12:27:45 EDT 2004 

A comment to the paragraph below was recently added via http://zope.org/Documentation/Books/ZDG/current/AppendixA.stx#1-0

---------------

  This is a list of standard permissions included with Zope. It is a
  good idea to use these permissions when applicable with your Zope
  products, rather than creating new ones.

    % mcdonc - June 11, 2002 6:46 pm:
     The Copy or Move permission was added as of 2.6. If you revoke the Copy and Move permission from a role
     respective to an object, even if a user has "View management screen" permissions, he or she will not be able
     to copy or move the object.

    % Anonymous User - Dec. 20, 2002 1:15 pm:
     I don't mean to bitch, but the following list is absolutely unnecessary. Every permission seems to be defined
     by quoting the permission and adding 'object' or the like. To me, this list contains no information.
     Couldn't you put longer descriptions and examples for each right?

    % Anonymous User - Dec. 20, 2002 1:20 pm:
     I'd rather just remove the chapter if it becomes more than this. Right now I can't maintain it. If someone
     else wanted to do this and keep it up to date, I'd be fine with it. -- chrism

    % proton - May 9, 2003 7:14 am:
     Sorry, Anon, "the following list" is absolutely NECESSARY. Yes, the descriptions are a little skimpy, but the
     whole reason I found this page was that I needed to see the ENTIRE list of permissions without being filtered
     by type. (i.e. if I go to the Zope management interface, I see only the permissions that apply to the type of
     object that I've selected.)
     Perhaps the page could be automatically generated from the Python source? I'd like to see a table-oriented
     display: name of permission, object types it applies to, 1-sentence description, and "warnings / gotchas /
     special notes."

    % Anonymous User - June 21, 2004 12:22 pm:
     This page needs expansion. I'm not a believer in "self-documentation", so administrators need to be able to
     know for sure what security settings they're putting on a page. Yes, we could check the source. . .or we
     could use a product that tells us what we're dealing with. I like the security model, the permission layering
     is great, but we need a bit more info.

    % Anonymous User - June 21, 2004 12:27 pm:
     This page needs expansion. I'm not a believer in "self-documentation", so administrators need to be able to
     know for sure what security settings they're putting on a page. Yes, we could check the source. . .or we
     could use a product that tells us what we're dealing with. I like the security model, the permission layering
     is great, but we need a bit more info.

More information about the ZDP mailing list