[hooks/security] provide attribute "add" permission
As of today, the update permission on attributes is checked at entity
*creation* time. This forbids using update permissions the proper way.
We set it to be checked at entity update time only.
We introduce a specific 'add' permission rule for attributes.
For backward compatibility, its default value will be the same as the
current 'update' permission.
Notes:
* needs a new yams version (ticket #149216)
* introduces two new 'add_permissions' rdefs (attribute - group|rqlexpr)
* if the update permission was () and the bw compat kicks in, the rule
is not enforced, to avoid un-creatable entity types -- this
restriction will be lifted when the bw compat is gone
* small internal refactoring on check_entity_attributes
* one small pre 3.6.1 bw compat snippet must be removed from schemaserial
Closes #2965518.
/* styles for access control forms)
*
* :organization: Logilab
* :copyright: 2003-2010 LOGILAB S.A. (Paris, FRANCE), all rights reserved.
* :contact: http://www.logilab.fr/ -- mailto:contact@logilab.fr
*/
/******************************************************************************/
/* security edition form (views/management.py) web/views/schema.py */
/******************************************************************************/
h2.schema{
color: %(aColor)s;
}
table.schemaInfo td a.users{
color : #00CC33;
font-weight: bold;
}
table.schemaInfo td a.guests{
color: #ff7700;
font-weight: bold;
}
table.schemaInfo td a.owners{
color: #8b0000;
font-weight: bold;
}
table.schemaInfo td a.managers{
color: #000000;
font-weight: bold;
}
.discret,
table.schemaInfo td a.grey{
color:#666;
}
a.grey:hover{
color:#000;
}
.red{
color: #ff7700;
}
div#schema_security{
width:100%;
}