> I would like to setup the security on a Zope server such that a user can
> edit permissions on something they own, but not grant more permissions
> than what they have acquired from the parent.
This is not covered by the current security framework.
But, surely, you can implement it, if you are ready to
make some compromises.
E.g. it will be somewhat difficult, to automatically revoke
permissions granted by a user, when his own permissions
are later restricted.
Your task is non-trivial...
Zope-Dev maillist - [EMAIL PROTECTED]
** No cross posts or HTML encoding! **
(Related lists -