- Each of the follow methods of the Configurator now allow the

  below-named arguments to be passed as "dotted name strings"
  (e.g. "foo.bar.baz") rather than as actual implementation objects
  that must be imported:

  setup_registry
     root_factory, authentication_policy, authorization_policy,
     debug_logger, locale_negotiator, request_factory,
     renderer_globals_factory

  add_subscriber
     subscriber, iface

  derive_view
     view

  add_view
     view, for_, context, request_type, containment

  add_route()
     view, view_for, factory, for_, view_context

  scan
     package

  add_renderer
     factory

  set_forbidden_view
     view

  set_notfound_view
     view

  set_request_factory
     factory

  set_renderer_globals_factory()
     factory

  set_locale_negotiator
     negotiator

  testing_add_subscriber
     event_iface

1 files changed, 5 insertions, 0 deletions

diff --git a/docs/narr/security.rst b/docs/narr/security.rst
index 13e6d632a..3b1de27ad 100644
--- a/docs/narr/security.rst
+++ b/docs/narr/security.rst
@@ -110,6 +110,11 @@ For example:
    config = Configurator(authentication_policy=authentication_policy,
                          authorization_policy=authorization_policy)
 
+.. note:: the ``authentication_policy`` and ``authorization_policy``
+   arguments may also be passed to the Configurator as :ref:`dotted
+   Python name` values, each representing the dotted name path to a
+   suitable implementation global defined at Python module scope.
+
 The above configuration enables a policy which compares the value of
 an "auth ticket" cookie passed in the request's environment which
 contains a reference to a single :term:`principal` against the