Logged In: YES 
user_id=469548

I'm attaching a file with the relevant parts of interfaces.py.

Using a Reject exception is possible, but it would mean I
would have to give everyone the 'Edit' permission to even
get to the auditor. I don't like that, because that would
mean I'd have to override all places in the web frontend
where Edit permissions are checked to check whether they
also have the 'CreateOrReplyToSelf' permission.  In this
patches' scheme, I only have to override those parts where
they could create a class or reply to themselves.  That's
still four places:

actions._EditAction.editItemPermission
actions._EditAction.newItemPermission
templating.HTMLClass.is_edit_ok
templating.HTMLItem.is_edit_ok

but with everyone having Edit permissions, I'd have to
override a couple of other actions (EditCSV, Retire) to lock
them down as well, and I would have to keep watching where
you used Edit permissions next time.