From: richard Date: Wed, 17 Jul 2002 21:44:14 +0000 (+0000) Subject: just some formatting and a minor clarification. X-Git-Url: https://git.tokkee.org/?a=commitdiff_plain;h=0af6eb015f14a8148343c80e32dd0dbf254a4b96;p=roundup.git just some formatting and a minor clarification. git-svn-id: http://svn.roundup-tracker.org/svnroot/roundup/trunk@887 57a73879-2fb5-44c3-a270-3262357dd7e2 --- diff --git a/doc/security.txt b/doc/security.txt index 9de57f2..71a8cc1 100644 --- a/doc/security.txt +++ b/doc/security.txt @@ -2,7 +2,7 @@ Security Mechanisms =================== -:Version: $Revision: 1.8 $ +:Version: $Revision: 1.9 $ Current situation ================= @@ -260,7 +260,8 @@ The htmltemplate will implement a new tag, which has the form:: where the require attribute gives a comma-separated list of permission names which are required, and the node attribute gives a comma-separated list of node properties whose value must match the current user's id. Either of these -tests must pass or the permission check will fail. +tests must pass or the permission check will fail. The section of html within +the side of the ```` that fails is remove from processing. Authentication of Users @@ -286,6 +287,7 @@ The CGI interface must be changed to: real credentials (username/password) around for each request (this means sessions and hence a session database) - use the new logical control mechanisms + - implement the permission module - implement a Role editing interface for users - implement htmltemplate tests on permissions @@ -298,6 +300,7 @@ The mail gateway must be changed to: - use digital signatures - use the new logical control mechanisms + - switch all code over from using config vars for permission checks to using permissions