Most applications using access control have a rule for opening access to templates: rule template *(*){ true }. Without this rule an accessible page would be blank which can be quite confusing. Since templates are not accessible directly, they can be safely opened by default. They are always protected by the page or ajax template calling it. Additional template rules can still be used to constrain access and hide templates.

Although trivial to implement, I've added this issue to allow some comments first.

Submitted by Danny Groenewegen on 17 August 2010 at 15:21

On 8 December 2010 at 14:17 Sverre Rabbelier tagged !srabbelier

On 7 February 2011 at 10:04 Danny Groenewegen tagged 1.2.7

On 7 February 2011 at 10:04 Danny Groenewegen closed this issue.

Log in to post comments