[hooks/security] Defer entity permission checks to an Operation.
Some of these checks may currently happen twice within the same
transaction and be costly.
This should be semantically safe. If people rely on some internal
transaction ordering to be allowed early (thus pass) while the
condition wouldn't be met at precommit time, their application is
broken. It however seems unlikely to happen in the real life (tm).
Closes #2932033
<html>
<head>
<!-- dependencies -->
<script type="text/javascript" src="utils.js"></script>
<script type="text/javascript" src="../../data/jquery.js"></script>
<script src="../../data/cubicweb.python.js" type="text/javascript"></script>
<script src="../../data/cubicweb.js" type="text/javascript"></script>
<script src="../../data/cubicweb.compat.js" type="text/javascript"></script>
<!-- qunit files -->
<script type="text/javascript" src="../../../devtools/data/qunit.js"></script>
<link rel="stylesheet" type="text/css" media="all" href="../../../devtools/data/qunit.css" />
<!-- test suite -->
<script src="cwmock.js" type="text/javascript"></script>
<script src="test_utils.js" type="text/javascript"></script>
</head>
<body>
<div id="main"> </div>
<h1 id="qunit-header">cw.utils functions tests</h1>
<h2 id="qunit-banner"></h2>
<ol id="qunit-tests">
</body>
</html>