Hi,after playing around with IPermissionPolicy for some time I suspect that some use case are not really handled well by the current API and I would like to resolve that for 0.12 :-)
1. For every policy check I have to load the db object again even if the caller has a db object already. Can we make it resource_or_dbobject? 2. Say I want to create a policy that prevents users to file tickets with a specific milestone (this needs triage). How to do that in a permission policy? There is no existing ticket so 'ticket:42' does not work. I guess we need to have some kind of virtual resource like: ticket_attribute:milestone=0.11.6 fs
smime.p7s
Description: S/MIME Cryptographic Signature
