NIHVIVO-3523 Create the EditByRolePermission, so we can use the PermissionsPolicy instead of EditRestrictedDataByRoleLevelPolicy, and these edit restrictions can be assigned to arbitrary PermissionSets.

webapp/web/WEB-INF/resources/permission_config.n3

@@ -4,6 +4,7 @@
 @prefix auth: <http://vitro.mannlib.cornell.edu/ns/vitro/authorization#> .
 @prefix simplePermission: <java:edu.cornell.mannlib.vitro.webapp.auth.permissions.SimplePermission#> .
 @prefix displayByRole: <java:edu.cornell.mannlib.vitro.webapp.auth.permissions.DisplayByRolePermission#> .
+@prefix editByRole: <java:edu.cornell.mannlib.vitro.webapp.auth.permissions.EditByRolePermission#> .
 
 auth:ADMIN 
     a auth:PermissionSet ;
@@ -49,6 +50,7 @@ auth:ADMIN
     
     # role-based permissions for ADMIN
     auth:hasPermission displayByRole:Admin ;
+    auth:hasPermission editByRole:Admin ;
     .
 
 auth:CURATOR 
@@ -83,6 +85,7 @@ auth:CURATOR
     
     # role-based permissions for CURATOR
     auth:hasPermission displayByRole:Curator ;
+    auth:hasPermission editByRole:Curator ;
     .
 
 auth:EDITOR 
@@ -109,6 +112,7 @@ auth:EDITOR
     
     # role-based permissions for EDITOR
     auth:hasPermission displayByRole:Editor ;
+    auth:hasPermission editByRole:Editor ;
     .
 
 auth:SELF_EDITOR
@@ -128,9 +132,10 @@ auth:SELF_EDITOR
     auth:hasPermission simplePermission:QueryFullModel ;
 
     # role-based permissions for SELF_EDITOR
-    #     For role-based display, SelfEditor is like Public. 
+    #     For role-based display and editing, SelfEditor is like Public. 
     #     SelfEditor uses its special permissions to edit/display its own values.
     auth:hasPermission displayByRole:Public ; 
+    auth:hasPermission editByRole:Public ; 
     .
 
 auth:PUBLIC
@@ -143,4 +148,5 @@ auth:PUBLIC
 
     # role-based permissions for PUBLIC
     auth:hasPermission displayByRole:Public ;
+    auth:hasPermission editByRole:Public ;
     .