Commit 6476b264 authored by Jérome Perrin's avatar Jérome Perrin

base: Image should not acquire local roles

All top level documents are not supposed to acquire local roles
https://www.erp5.com/erp5-Guideline.Unset.Acquire.Local.Roles.On.Document.Portal.Type.Configuration.If.Applicable

I believe this comes from the time where we were using images as
sub-documents of products or persons. We now use embedded files for
these cases, so no need to have an exception here.

Depending on the security configuration, there might be a notable side effect of applying this change: images that were visible by some users because they acquired Auditor role from the module will not longer be visible by these users, but they will still be indexed as visible, so they will appear in catalog searches.
In such case, after re-indexing image module the catalog will be consistent again.


/reviewed-on nexedi/erp5!666
parent cc56ac36
......@@ -27,7 +27,7 @@
</item>
<item>
<key> <string>acquire_local_roles</string> </key>
<value> <int>1</int> </value>
<value> <int>0</int> </value>
</item>
<item>
<key> <string>content_icon</string> </key>
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment