X-Git-Url: https://www.chiark.greenend.org.uk/ucgi/~mdw/git/disorder/blobdiff_plain/5f5fc693faf8f256ca92b7c58a1cc96ba7df4269..c4e2cfdd2d1eabe3d556fb7a5938eca465f9c249:/README.upgrades

diff --git a/README.upgrades b/README.upgrades
index 915a794..b47022e 100644
--- a/README.upgrades
+++ b/README.upgrades
@@ -14,6 +14,24 @@ upgrading between particular versions.  Minor versions are not
 explicitly mentioned; a version number like 1.1 implicitly includes
 all 1.1.x versions.
 
+* 2.0 -> 2.1
+
+** Authentication
+
+Users are now stored in the database rather than in 'allow' directives in a
+private configuration file.  'allow' is still understood in this version, but
+is only used to populate the database on startup.  After the first (successful)
+run of the server the remaining 'allow' directives should be deleted.
+
+'restrict' and 'trust' are replaced by a system of per-user rights.  The
+default user rights are based on the 'restrict' setting, and the rights of
+users created frow 'allow' directives preserve the meaning of 'trust', but
+after the first run you should remove these directives and (optionally) add a
+'default_rights' directive.
+
+'allow', 'restrict' and 'trust' will stop working entirely in a future version
+but for now they will generate harmless error messages.
+
 * 1.4/1.5 -> 2.0
 
 ** 'transform' and 'namepart' directives