Opened 11 years ago
Last modified 7 years ago
#11263 new enhancement
AuthzPolicy should allow restricting access to only the most recent version of a resource — at Initial Version
Reported by: | Ryan J Ollos | Owned by: | |
---|---|---|---|
Priority: | normal | Milestone: | next-major-releases |
Component: | general | Version: | 1.0-stable |
Severity: | normal | Keywords: | authzpolicy |
Cc: | Branch: | ||
Release Notes: | |||
API Changes: | |||
Internal Changes: |
Description
It would be useful to be able to restrict access to only the most recent version of a resource. This was discussed in comment:8:ticket:8976.
One suggestion is to use the syntax @HEAD
. Another possibility would be to use @None
, since by convention None
refers to the most recent version of a resource. What would be the most logical syntax to use?
Another request from comment:8:ticket:8976 is to hide the History contextual navigation item and prevent navigating to /wiki/WikiPage?action=history
when the user only has access to the most recent version of a resource. This is potentially more difficult because we have a way to check if the user has access to a particular resource, but it is less straightforward to check which versions of a resource the user has access to, and performance considerations may come into play.