Hi everyone, I'm working on KERN-2692, which is a permission exception when trying to delete content within a pooled content node of which a user has edit permission. Has this scenario been taken into consideration?
a) AccessControlManagerImpl looks scary b) If a user has "WRITE" permission on a content node, should they always be able to delete their children? If not, what is the difference between "WRITE" and "WRITE_PROPERTY"? c) If the answer to b) is no, and that it is too broad of a statement to make, maybe we need a new permission such as "DELETE_CHILDREN", so that editors may have full access to the content within pooled content. Any advice is much appreciated! -- Cheers, Branden _______________________________________________ oae-dev mailing list [email protected] http://collab.sakaiproject.org/mailman/listinfo/oae-dev
