Opened 13 years ago
Last modified 5 years ago
#8926 new enhancement
[PATCH] configurable group_whitelist, systematic negation operation, mixed-case group names
| Reported by: | Patrick Schaaf | Owned by: | |
|---|---|---|---|
| Priority: | normal | Component: | VirtualTicketPermissionsPlugin |
| Severity: | normal | Keywords: | |
| Cc: | Trac Release: | 0.11 |
Description
This ticket provides an enhancement patch covering the following bullet points:
- in addition to the group_blacklist, in section
[virtualticketpermissions], you can also write a group_whitelist setting.- only groups on the whitelist will be considered for the TICKET_IS_..._GROUP permissions
- the blacklist, if also configured, still works
- both whitelist and blacklist entries can be regular expressions (each list will be regex-compiled once on component init for performance)
- group names can be mixed-case in addition to the already supported all-lower-case; only complete-upper-case stuff, i.e. PERMISSIONS_PROPER, are excluded
- for all of the TICKET_IS_XXX permissions provided by the module,
there is now a corresponding TICKET_IS_NOT_XXX negating the test.
This permits writing mutually exclusive workflow steps, like this:
reassign = assigned,accepted,started -> assigned reassign.operations = set_owner reassign.permissions = TICKET_IS_OWNER_GROUP takeover = assigned,accepted,started -> assigned takeover.operations = set_owner_to_self takeover.permissions = TICKET_IS_NOT_OWNER_GROUP OUP
A single user will either see reassign (when they share a group with the current owner), or takeover, but never both (unless they are TRAC_ADMIN, which seems to not call down to the plugin at all, unfortunately)
Attachments (3)
Change History (10)
Changed 13 years ago by
| Attachment: | virtualticketpermissions-negation-and-whitelist.patch added |
|---|
comment:1 Changed 13 years ago by
Changed 13 years ago by
Added TICKET_IS_NOTOWNER permission (fixes t:#5475)
Changed 13 years ago by
| Attachment: | policy.2.py added |
|---|
Added TICKET_IS_NOTOWNER permission (fixes t:#5908)
comment:2 Changed 13 years ago by
| Owner: | changed from Norman Rasmussen to Ryan J Ollos |
|---|
This patch in whole or part will be committed soon. Here is the comment from the project wiki page that I removed when the attachments were removed:
Modifications
Modified policy.py (original : modified) to add new permission TICKET_IS_NOTOWNER. Can be used to fix Trac Ticket #5908 (action "accept" in a ticket visited by owner), for example:
accept.permissions = TICKET_IS_NOTOWNER
comment:3 Changed 13 years ago by
btw, I'm pretty sure that negation-and-whitelist.patch obsoletes the policy patches, the policy patches could probably just be dropped.
comment:4 Changed 12 years ago by
| Cc: | Ryan J Ollos added; anonymous removed |
|---|
Any news on the patch. The attachment seems to be empty.
comment:5 follow-up: 6 Changed 12 years ago by
The attachment isn't empty when you download it. Don't know what of it confuses the previewer here...
If there are functional questions, I'd try to find some time to address them - earliest next week, as I'm busy right now with other work.
comment:6 Changed 12 years ago by
| Cc: | anonymous added; Ryan J Ollos removed |
|---|
My apologies I didn't even think to try and download. As you say the previewer doesn't like it.
I don't imagine there'll be functional questions; I just didn't want to have to re-invent the wheel, but thanks anyway.
comment:7 Changed 5 years ago by
| Owner: | Ryan J Ollos deleted |
|---|
I'm moving the attachments from the wiki page over to this ticket.