[Roundup-devel] property permissions

[alexander s. <al...@an...>]

hello!

imho it would be more effective if Permission took a list of properties
(and perhaps a list of class names?) instead of single name.  especially
because there is no such thing as "negative" or "deny" permission, that
could allow access to entire class except for one property.

use case: customer is allowed to see all issue contents (to let them
know that the issue is handled) except for "time spent" property which
is visible for management staff and editable for "assignedto" person.

best wishes,
alex.