from ERP5 5A Security Model:

      Author is one who can make new documents. But Author is not allowed to
      view documents. 



git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@9077 20353a03-c40f-0410-a6d1-a30d3c3de9de

product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_core/Base_setDefaultSecurity.xml

@@ -80,7 +80,6 @@ for permission in permission_list:\n
   context.manage_permission(permission, [\'Manager\'], 0)\n
 \n
 # Then, define default ERP5 permissions\n
-\n
 common_permission_list = [p for p in [\n
   \'Access Transient Objects\',\n
   \'Access contents information\',\n
@@ -104,10 +103,10 @@ assignor_permission_list = [p for p in [\n
 erp5_role_dict = {\n
   \'Assignee\': common_permission_list,\n
   \'Assignor\': common_permission_list + author_permission_list +\\\n
-              assignor_permission_list, \n
-  \'Associate\': common_permission_list, \n
+              assignor_permission_list,\n
+  \'Associate\': common_permission_list,\n
   \'Auditor\' : common_permission_list,\n
-  \'Author\': common_permission_list + author_permission_list,\n
+  \'Author\': author_permission_list,\n
   \'Manager\': permission_list\n
 }\n
 \n
@@ -180,6 +179,9 @@ return "finished"\n
                             <string>permission_list</string>
                             <string>_getiter_</string>
                             <string>permission</string>
+                            <string>append</string>
+                            <string>$append0</string>
+                            <string>p</string>
                             <string>common_permission_list</string>
                             <string>author_permission_list</string>
                             <string>assignor_permission_list</string>