[Zope-CMF] portal_catalog.searchResults interaction with allowedUsersAndRoles

Dieter Maurer dieter@handshake.de
Tue, 26 Feb 2002 20:43:43 +0100


John Morton writes:
 > .... portal catalog search results artificially restricted by roles ...
 > So if the search results of a catalog search are governed by the usual 
 > security machinary anyway (this is the case, right?), what is the purpose of 
 > this allowedUsersAndRoles business?
It is done to provide the nice property that a search result only
contains hits that you may view.

Without the "allowedUsersAndRoles" magic you will see search results
that you cannot look at in detail. When you would click in the search
overview, you would get a login request because you would not have
view permission.


Dieter