[Zope3-Users] Security between Context and View

David Johnson djohnson at jsatech.com
Fri May 12 11:14:29 EDT 2006


I have a view object which calls it's content object to return another
object.  The view object does not have access to the returned object, and I
receive a forbidden attribute error.

 

***Content***

 

class Transaction(object):

 

      transid=u''

 

class TransactionFactory(Persistent,Contained):

       

     implements(ITransactionFactory)

 

     def produceTransaction(self):

          transaction = Transaction()

          transaction.transid = 'abcd'

          return transaction

 

***View***

 

class Transaction:

 

      def doTransaction(self):

           transaction = self.context.produceTransaction()

           self.session['transid'] = transaction.transid

           transaction.commit()

 

This generates a forbidden attribute error on
transaction.Transaction.transid

 

 

 

 

 

 

 

--

David Johnson

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.zope.org/pipermail/zope3-users/attachments/20060512/36f16c70/attachment.htm


More information about the Zope3-users mailing list