THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
Specific changes that will be made to implement the solutions described above.
5.05 Permissions behavioral rules
- we only support comparing 2 permissions of type WebloggerPermission, and WebloggerPermission cannot be subclassed
- a permission with type = null indicates a global (application wide) permission
- permissions that are global (type = null) cannot specify an object (global perms do not pertain to objects)
- permissions of a specific type must also specify an object (typed perms must correspond to an object)
- permissions must be of the same type to be compared (we do not compare global and 'weblog' permissions)
- permissions of a specific type must also specify the same object to be compared ('weblog' perms for different weblogs are never comparable)
- a permission action can only imply other permissions of the same type ('weblog' perms can only imply other 'weblog' perms)
- the 'all' action is a special action that implies all possible actions within the specified permission type/object combo
- a global permission with the 'all' action implies all permissions in the system (the global admin role)
- a permission can imply any number of other permissions
5.1 Define new permissions classes
...