Changes between Initial Version and Version 2 of Ticket #10421
- Timestamp:
- Oct 3, 2012, 10:16:51 PM (12 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #10421
-
Property
Summary
changed from
Do we really to implement permissions for this plugin?
toDo we really need to implement permissions in this plugin?
-
Property
Summary
changed from
-
Ticket #10421 – Description
initial v2 1 1 I've been thinking lately about whether the permissions for this plugin offer any value. The plugin should be disabled for `anonymous` users, but for other users, what is the value of being able to grant the feature to some users, and not other users? 2 2 3 What use cases do people have that make use of the permissions? Would it be a problem to just drop the permissions? Thefeature seems to be pretty benign; I can't see the harm in providing it to everyone. Can anyone think of security holes that would be opened by dropping the permission? Dropping the permission would certainly simplify installation.3 What use cases do people have for making use of the permissions? Would it be a problem to just drop the permissions from the plugin? The bookmarks feature seems to be pretty benign; I can't see the harm in providing it to everyone. Can anyone think of security holes that would be opened by dropping the permission? Dropping the permission would certainly simplify installation. 4 4 5 The `BOOKMARK_MODIFY` is not currently used, and I can't understand how it could be applicable even as features are added. Is there a use case for allowing users to view bookmarks, but not add them?5 The `BOOKMARK_MODIFY` is not currently used, and I can't see how it could be useful even as features are added. Is there a use case for allowing users to view bookmarks, but not add them? The only use-case I think of is to provide users with a set of read-only bookmarks, but can anyone actually envision using a feature like that in practice? 6 6 7 7 An alternative to permissions would be to have a user preference, so that users not wanting the feature could disable it. 8 8 9 What brought this to mind , was the possibility of includingthe feature in the Bloodhound project, and simplifying the installation in order to make that a more realistic possibility.9 What brought this to mind again, and caused me to raise a ticket, was the thought of suggesting to include the feature in the Bloodhound project, and simplifying the installation in order to make that a more realistic possibility.