[Zope] Basic Security question

Stefan H. Holek stefan at epy.co.at
Thu May 27 11:40:24 EDT 2004

Not sure, but note that proxy roles are not passed on to scripts 
invoked by Display. Only Display itself will have the proxy role.


On Donnerstag, Mai 27, 2004, at 17:09 Europe/Vienna, Jonathan Hobbs 

> I have created a dtml method called 'Display'.  This test routine is
> hardcoded to display an object from the 'Data' folder.  I have set the 
> Proxy
> role for the Display method to "Authenticated".  When, as an 
> 'anonymous'
> user, I access the 'Display' method the security popup window appears?!
> Shouldn't the Proxy role assigned to the dtml method enable access to 
> the
> object in the folder?
The time has come to start talking about whether the emperor is as well
dressed as we are supposed to think he is.               /Pete McBreen/

More information about the Zope mailing list