Wiki Navigation

Virtual ticket permissons

Notes

Creates a set of virtual permissions for tickets that the user is associated with.

There are three main permissions for this plugin: TICKET_IS_REPORTER, TICKET_IS_CC, and TICKET_IS_OWNER. TICKET_IS_SELF is an alias for all three of these.

With each permission, users will be granted the permissions where they are the person mentioned in the permission. So if a user has TICKET_IS_REPORTER, they can only get the permisson for ticket they reported. For TICKET_IS_CC, they just have to be included in the CC list.

There are also group-based permissions: TICKET_IS_REPORTER_GROUP, TICKET_IS_CC_GROUP, and TICKET_IS_OWNER_GROUP. These work in a similar way to their non-group counterparts, except that you are granted the permission if you share a group with the target user. For example, if ticket 1 was reported by Allan, and Allan and Bob are both in the group company_foo, and Bob has TICKET_IS_REPORTER_GROUP, then Bob will get the permission for ticket 1 since he shares a group with the reporter. Each group-based permission is also an alias for the normal one, so you do not have to grant both. TICKET_IS_GROUP is an alias for all the group-based permissions (and therefore all the normal ones as well).

Finally, users with TRAC_ADMIN will automatically get all these permissions. The meta-user "anonymous" also cannot be restricted by this plugin, as their identity isn't known to be checked.

Configuration

All configuration options go in the [virtualticketpermissions] section.

group_blacklist

Groups to ignore for the purposes of the *_GROUP permissions.

Defaults to "anonymous, authenticated"

You must also add VirtualTicketPermissionsPolicy to your permission_policies setting in trac.ini. See below for an example if you don't have any other policies.

Example

An example configuration:

[virtualticketpermissions]
group_blacklist = anonymous, authenticated, labusers

[components]
virtualticketpermissions.* = enabled

[trac]
permission_policies = DefaultPermissionPolicy, LegacyAttachmentPolicy, VirtualTicketPermissionsPolicy

[ticket-workflow]
accept = new,accepted -> accepted
accept.permissions = TICKET_IS_OWNER

Bugs/Feature Requests

Existing bugs and feature requests for VirtualTicketPermissionsPlugin are here.

If you have any issues, create a new ticket.

Download and Source

Download the zipped source, check out from using Subversion, or browse the source with Trac.

Recent Changes

[4153] by normanr on 08/19/08 12:47:20

Adding mime-type for README

[4152] by normanr on 08/19/08 12:44:05

Initial check in

[4151] by normanr on 08/19/08 12:07:20

New hack VirtualTicketPermissionsPlugin, created by normanr

Modifications

Modified policy.py (original : modified) to add new permission TICKET_IS_NOTOWNER. Can be used to fix Trac Ticket #5908 (action "accept" in a ticket visited by owner), for example:

accept.permissions = TICKET_IS_NOTOWNER

Author/Contributors

Author: normanr
Contributors: jlove

Attachments

policy.py (5.6 kB) -Added TICKET_IS_NOTOWNER permission (fixes trac:ticket:5475), added by jlove on 01/22/09 19:38:11.
policy.2.py (5.6 kB) -Added TICKET_IS_NOTOWNER permission (fixes Trac Ticket #5908), added by jlove on 01/22/09 20:30:35.

Download in other formats:

Plain Text