From 7c4f2801458a795a8c49462cf02c5c052be3f068 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9rome=20Perrin?= <jerome@nexedi.com>
Date: Mon, 7 Aug 2006 16:09:05 +0000
Subject: [PATCH] from ERP5 5A Security Model:       Author is one who can make
 new documents. But Author is not allowed to       view documents.

git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@9077 20353a03-c40f-0410-a6d1-a30d3c3de9de
---
 .../portal_skins/erp5_core/Base_setDefaultSecurity.xml | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_core/Base_setDefaultSecurity.xml b/product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_core/Base_setDefaultSecurity.xml
index 33abc174dc..3ac5c4176c 100644
--- a/product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_core/Base_setDefaultSecurity.xml
+++ b/product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_core/Base_setDefaultSecurity.xml
@@ -80,7 +80,6 @@ for permission in permission_list:\n
   context.manage_permission(permission, [\'Manager\'], 0)\n
 \n
 # Then, define default ERP5 permissions\n
-\n
 common_permission_list = [p for p in [\n
   \'Access Transient Objects\',\n
   \'Access contents information\',\n
@@ -104,10 +103,10 @@ assignor_permission_list = [p for p in [\n
 erp5_role_dict = {\n
   \'Assignee\': common_permission_list,\n
   \'Assignor\': common_permission_list + author_permission_list +\\\n
-              assignor_permission_list, \n
-  \'Associate\': common_permission_list, \n
+              assignor_permission_list,\n
+  \'Associate\': common_permission_list,\n
   \'Auditor\' : common_permission_list,\n
-  \'Author\': common_permission_list + author_permission_list,\n
+  \'Author\': author_permission_list,\n
   \'Manager\': permission_list\n
 }\n
 \n
@@ -180,6 +179,9 @@ return "finished"\n
                             <string>permission_list</string>
                             <string>_getiter_</string>
                             <string>permission</string>
+                            <string>append</string>
+                            <string>$append0</string>
+                            <string>p</string>
                             <string>common_permission_list</string>
                             <string>author_permission_list</string>
                             <string>assignor_permission_list</string>
-- 
2.30.9