[Zope3-dev] Zope Policy x Grants
Sidnei da Silva
sidnei at awkly.org
Fri Oct 31 06:28:52 EST 2003
On Thu, Oct 30, 2003 at 09:04:36PM -0500, Gary Poster wrote:
| If it's really necessary, I guess that's ok by me, anyway. Is there no
| other way around this?
|
| Stated more generally, is it true that, in order for an object to be
| accessible to untrusted and/or security-aware code, they must implement
| ILocation?
Thats a good question. Currently, if the object does not implement
ILocation, the permissions and roles are evaluated, but globally. It
doesn't get local security assertions.
--
Sidnei da Silva <sidnei at awkly.org>
dreamcatching :: making your dreams come true
http://awkly.org
Computer programs expand so as to fill the core available.
More information about the Zope3-dev
mailing list