/**
* By default all authenticated users should be able to do
* whatever they wish with relatedto objects, later we can add
* restrictions on object level as necessary.
*/
function get_class_magic_default_privileges()
{
$privileges = parent::get_class_magic_default_privileges();
$privileges['USERS']['midgard:create'] = MIDCOM_PRIVILEGE_ALLOW;
$privileges['USERS']['midgard:update'] = MIDCOM_PRIVILEGE_ALLOW;
$privileges['USERS']['midgard:read'] = MIDCOM_PRIVILEGE_ALLOW;
return $privileges;
}
/**
* Deny midgard:read by default
*/
function get_class_magic_default_privileges()
{
$privileges = parent::get_class_magic_default_privileges();
$privileges['EVERYONE']['midgard:read'] = MIDCOM_PRIVILEGE_DENY;
return $privileges;
}