Matt Wright

What about something like: ``` python Permission(RoleNeed('manager') and Permission(RoleNeed('reviewer')) ``` or ``` python Permission(RoleNeed('manager') or Permission(RoleNeed('reviewer')) ``` That, read out in English, makes sense to me.

I totally hear you. Though, I think a problem has arisen here. I believe this is a significant API change due to the fundamental change in operator overloading. One must...

I believe there was some changes to how the contexts (app and request) are handled between Flask version. But you're problem lies in the fact that flask-principal only works when...

The trick will be to update the identity to be that of the user that initiated the delayed task in the context of the Celery app. You could send the...

@mgax I like this suggestion. There really isn't any way to configure the anonymous identity at this point.

@andrew-blake There are some specific changes here geared for your exact situation. Can you explain your motivation for submitting this PR?

Any thoughts on how to implement this? I did something at one point in another project of mine where the permission object is created on the fly in a decorator....

I'm not convinced a fundamental redesign is required. Flask-Principal is already very minimal in its design.

I would say Flask-Principal gives you to the tools to build an ACL system already. Permissions are attached to the identity at the developer's discretion. The problem I'd like to...

@metatoaster Thanks for your input. This is certainly one way of going about it and should work for many implementations. I've started working on a simple ACL/ACE system for Flask-Security...