[action] ticket #493227, only authenticated user should be able to delete a

         comment if it has the permission to do it

views.py

@@ -16,7 +16,8 @@
 
 from cubicweb.selectors import (one_line_rset, but_etype, implements,
                                 has_permission, relation_possible, yes,
-                                match_kwargs, score_entity)
+                                match_kwargs, score_entity,
+                                authenticated_user)
 from cubicweb.view import EntityView
 from cubicweb.common.uilib import rql_for_eid, cut, safe_cut
 from cubicweb.common.mixins import TreeViewMixIn
@@ -319,6 +320,7 @@
 class DeleteCommentAction(Action):
     id = 'delete_comment'
     __select__ = implements('Comment') & \
+                 authenticated_user() & \
                  score_entity(lambda x: not x.reverse_comments and x.has_perm('delete'))
 
     title = _('delete comment')