RFC: refactor permission system
I'm working on changing the default permissions in 0.5 to off.
Messages from myself on Matrix:
to everyone working on WP 0.5: I started new access module (basically granting access to each object separately and consciously, not just allowing everything to appropriate clients)
A new C module is being developed to keep rules (match clients to allow them certain access to a certain object)
Lua and event hooks might be considered as well.
reason: avoid race when a node appears which we don't want to expose. In such case there's a short moment when clients see the node before we override and cut access to it
Current approach (master, next-rebased): discover clients, assign all permissions to all nodes
My approach: detect nodes, use match rules defined for each of those