(cherry picked from commit 63aa0d79)

(cherry picked from commit 5a0e20d5)

(cherry picked from commit d6d3df6d)

Use the HalRestricted skin selection to prevent anonymous user to access the API.

This allow the JS application to be informed that the user is not authenticated (and so, it can prevent allDocs call without results).

Consider this code as a proof of concept which should be instead be done at PAS level.

Restricted access on WebSection level can not be done currently, as it will redirect the query to the ERP5 login_form page template.
(cherry picked from commit 6fecf063)

caching_policy_manager configuration has to be modified to make it effective
(cherry picked from commit 628be95d)

(cherry picked from commit dd87249e)

+ datetime fix
+ editorfield support
(cherry picked from commit 1a6716c6)

(cherry picked from commit 46321547)

This bt5 will provide API for JIO access.
(cherry picked from commit 3f897e91)

This reverts commit fd3c55e0.

This reverts commit 46c048be.

This reverts commit c17087a1.

If 2 lines have the same effective date (catalog has a 1 second precision),
always return the validate and open first.

  Permit user update promise file searching by bt5s name, and including its
 repository.

Access Token behaviour is configured on the portal type level.
The token ID is used to directly fetch it without using the catalog (faster
access).

Base_getSectionUidListForSectionCategory : returns [-1] if no organisations are member of this section_category.

This way we can directly pass the returned value as section_uid= to
getInventory without worrying about the problem that if this section category
has no member, then section_uid parameter is ignored.

Calling an external python will prevent calling navigate from a python script
with a proxy role.