Opened 11 years ago
Last modified 7 years ago
#11263 new enhancement
AuthzPolicy should allow restricting access to only the most recent version of a resource — at Initial Version
| Reported by: | Ryan J Ollos | Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | next-major-releases |
| Component: | general | Version: | 1.0-stable |
| Severity: | normal | Keywords: | authzpolicy |
| Cc: | Branch: | ||
| Release Notes: | |||
| API Changes: | |||
| Internal Changes: | |||
Description
It would be useful to be able to restrict access to only the most recent version of a resource. This was discussed in comment:8:ticket:8976.
One suggestion is to use the syntax @HEAD. Another possibility would be to use @None, since by convention None refers to the most recent version of a resource. What would be the most logical syntax to use?
Another request from comment:8:ticket:8976 is to hide the History contextual navigation item and prevent navigating to /wiki/WikiPage?action=history when the user only has access to the most recent version of a resource. This is potentially more difficult because we have a way to check if the user has access to a particular resource, but it is less straightforward to check which versions of a resource the user has access to, and performance considerations may come into play.
