[Zope3-dev] Zope Policy x Grants
Gary Poster
gary at modernsongs.com
Fri Oct 31 07:23:39 EST 2003
Sidnei da Silva wrote:
> On Thu, Oct 30, 2003 at 09:04:36PM -0500, Gary Poster wrote:
> | If it's really necessary, I guess that's ok by me, anyway. Is there no
> | other way around this?
> |
> | Stated more generally, is it true that, in order for an object to be
> | accessible to untrusted and/or security-aware code, they must implement
> | ILocation?
>
> Thats a good question. Currently, if the object does not implement
> ILocation, the permissions and roles are evaluated, but globally. It
> doesn't get local security assertions.
Ah, that makes a bit more sense. Interesting implications.
Now newly armed with more knowledge, I agree with my agreement to your
solution. ;-)
Gary
More information about the Zope3-dev
mailing list