there was 2 sections in PN because security rules are globally set that means you need one :: to locate the component and one :: for security testing.
in Nukes since rules are defined per component you don't need to locate it and only one :: is required
Ok, I can understand that. so we only have one :: because rules are local to the module. so we really don't need to prefix the rule with the module name as in
it could be:
datatype:typeId:subtypeId or basicly any pattern we want.
yes it's up to the module to handle security how it wants.
in nukes 2 that will be done with any number of : and the check will be made against a String.