1) while the usual search functionalities respect permissions (es.
Person X in group Y cannot even see a page restricted to group Z) this
is not respected
by the RecentChanges plugin (all pages can be seen - albeit when
jumping
there you get the usual error message)
I understand your concern, but I do not believe this is a bug. I would
argue that is better for RecentChanges to show all recent changes,
even those that are for pages the user has no access to. The idea
behind ACLs (and security policies, for that matter) is to restrict
access, not make them invisible to less-privileged users.
2) this can onlybe enforced by the author adding [{ALLOW edit
mygroup}].
2) any other way? I was wondering whether thic can be enforced by a
filter ...
Not sure what you meant by "this" and "thic."
Tx in advance
Luca
