manage_pasteObjects is protected by "Modify portal content"

[tiberiuichim]

Shouldn't it be protected by "Add portal content" instead? I can understand, we're basically modifying context container by adding things to it, but as long as there is a more specific permission, I think that one should be used.

See this http://plone.293351.n2.nabble.com/Why-is-manage-pasteObjects-protected-with-quot-Modify-portal-content-quot-td7569350.html for context.

My use case is that I want Editors to be able to checkout content (using plone.iterate). They can't checkout if they're not allowed to create a copy of the content in that location.

[pgrunewald]

FYI: As workaround you can try collective.deletepermission, whose first intention is to fix a conceptual problem with the "Delete objects" permission, but also addresses your issue since version 1.3.0.