Note on authorization
Currentely, we have
BEWARE that some privileges should NOT be granted to ANY categories but site admins which should by themselves be restricted. Especially:
- anonymous user
- authenticated generic
- authenticated user
- authenticated usr lead
- site admin
BEWARE that some privileges should NOT be granted to ANY categories but site admins which should by themselves be restricted. Especially:
- administer nodes allows to bypass all privileges since the node itself is accessible. This includes bypass of OG document access
- testadmin
- chajecki
Groups:
- Printer-friendly version
- Login or register to post comments