Plone.app.users

------------------

- Fixed test of the default user portrait, which changed from
defaultUser.gif to defaultUser.png in Products.PlonePAS 4.0.5.
[maurits]

------------------

- Depend on ``Products.CMFPlone`` instead of ``Plone``.
[elro]

- Don't allow non-Managers to add new users to groups that grant the Manager
role.
[davisagli]

- Protect the user management forms with the
"Plone Site Setup: Users and Groups" permission instead of the generic
"Manage portal" and "Manage users". This requires
plone.app.controlpanel >= 2.1b1.
[davisagli]

------------------

- Check for permission when editing other users' profiles.
This fixes http://dev.plone.org/plone/ticket/11842 and
http://plone.org/products/plone/security/advisories/CVE-2011-1950
[fRiSi, davisagli]

------------------

- Fixed test of the default user portrait, which changed from defaultUser.gif to
defaultUser.png in Products.PlonePAS 4.0.5.
[maurits]

------------------

- Don't assume that fields in the user schema will be saved in property sheets
when a new user registers. Instead, adapt the navigation root to the user
schema to get the same adapter as is used on the Personal Information form,
and use it to save the values from the registration form.
[davisagli]

- Fixed critical error on add user page
when some groups have a non-ascii character in their title.
Sort groups on their title normalized.
Token and value in terms in the groups vocabulary were switched.
This closes http://dev.plone.org/plone/ticket/11316
[thomasdesvenain, vincentfretin, davisagli]

------------------

- Don't use a custom widget just to set the description of the fullname field,
which should be set on the field itself.
[davisagli]