#9288: Improved commenting infrastructure ----------------------------+----------------------------------------------- Reporter: timo | Owner: timo Type: PLIP | Status: reopened Priority: minor | Milestone: 4.1 Component: Infrastructure | Resolution: Keywords: | ----------------------------+-----------------------------------------------
Comment(by rossp): Replying to [comment:52 timo]: > Replying to [comment:51 eleddy]: > > Replying to [comment:50 timo]: > > Nice work! I am super gung ho about authenticated being able to comment. In default installs you will rarely see authenticated users who aren't members and in custom environments using the member role is unlikely. Curious what others think. > > > > Thanks! > > I checked the implementation and added some tests and documentation. plone.app.discussion basically checks for the 'Reply to item' permission to decide when to show the comment form. By default, this permission is granted to the "Member", "Reviewer" and "Manager" role but not to "Authenticated". If integrators want to allow discussion for "Authenticated" they can just add this permission to the role. Though, I agree that this could cause confusion when the user is authenticated and discussion is enabled. I think current behavior in the existing Plone commenting implementation is that Authenticated can add comments, such as is necessary for OpenID login (OpenID users don't have the Member role). If this is correct, then I think changing this behavior by not assigning "Reply to item" to Authenticated is incorrect. I think unless there's a really compelling reason, current behavior should be maintained. -- Ticket URL: <http://dev.plone.org/plone/ticket/9288#comment:53> Plone <http://plone.org> Plone Content Management System _______________________________________________ PLIP-Advisories mailing list plip-advisor...@lists.plone.org http://lists.plone.org/mailman/listinfo/plip-advisories