Products.plonepas

----------------

- Optimise the local roles plugin for the common case where
local_roles is empty
[dreamcatcher]

- the plone user was assuming a one to one mapping between property plugin
and user property sheet, and stripping away additional ones as part of
the retrieval of ordered sheets, instead, it now stores all
propertysheets in an ordered dictionary, so this assumption is not needed
[k_vertigo]

- More postonly security changes
[alecm, ramon]

----------------

- Use a local postonly decorator so PlonePAS can be used with Plone
2.5, 2.5.1 and 2.5.2.
[wichert]

- Protect the tools with postonly security modifiers.
[mj]

- Update GRUF compatibility functions to use the same security checks
as GRUF itself uses.
[mj]

- Fix migration to handle properties of selection or multiple selection
types.
[reinout]

- Correct creation of groups which default group managers.
[dreamcatcher]

- Fix migration from GRUF sites: also include the member properties in the
migration.
[tesdal]

- Correct the test for creation of groups with the same id as users: search
for the exact id, not substrings.
[tesdal]

- Fix bad form action which made it impossible to add a plone user factory
plugin through the ZMI. Backported from trunk.
[wichert]