- New methods of the ``pyramid.config.Configurator`` class:

  ``set_authentication_policy`` and ``set_authorization_policy``.  These are
  meant to be consumed mostly by add-on authors.

1 files changed, 2 insertions, 6 deletions

diff --git a/TODO.txt b/TODO.txt
index 6e908bdee..76e0784f2 100644
--- a/TODO.txt
+++ b/TODO.txt
@@ -6,18 +6,14 @@ Should-Have
 
 - Name WSGI app "main" instead of pipeline in scaffold configs?
 
-- Turn off debugtoolbar redirect catcher in scaffolding (makes tutorials
-  weird).
+- Make another release of debug toolbar (has now redirects turned off by
+  default so tutorials aren't weird).
 
 - Mention debug toolbar in tutorials.
 
 - Make it possible to use tween aliases in explicit tween config?  If not,
   the tween factories of all add-ons must be APIs.
 
-- Provide a way to set the authentication policy and the authorization policy
-  during a config.include (they are related, so just exposing the currently
-  underscored-private _set_auth* methods won't cut it).
-
 - Merge Michael's route group work.
 
 - Deprecate pyramid.security.view_execution_permitted (it only works for