[Zope-dev] Security-Bug

Wed, 8 May 2002 12:57:56 +0200

Hi,

could this be a bug in the security-machinery?

Lets say we have a role foo, this role has the permission to view the management screens.
Lets say we have a user bar which has the role foo.

If i login into the ZMI a be able to go to
Control_Panel/Products.
And now if i want i be able to add a Zope Permission in every Product-Folder i found.

Testet with Zope 2.4.3

Do i have misset any security-permissions or is this really a bug?

Thanks in advance