On August 9, 2010, Paul Hummer wrote: > Hi folks- > > The SourcePackageRecipeBuild interface needs so field level security > on it (only two fields, but who knows). We used to use TAL and specify > the fields individually, but now it seems like we're moving in a > direction where we use separate interfaces for permissions. > > Which is the preferred way?
If you mean protecting the field via premission: TAL expression in the view while leaving the underlying model field unprotected, than the answer is obvious: don't do that. It means that your fields are public in the API. You really want to protect them via model security. Now you can either use an interface to split the permission or declare them as attributes in the ZCML. Interface works best when the list of attribuets grow. It makes it easier to manage. So interface scales usually better. -- Francis J. Lacoste [email protected]
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Mailing list: https://launchpad.net/~launchpad-dev Post to : [email protected] Unsubscribe : https://launchpad.net/~launchpad-dev More help : https://help.launchpad.net/ListHelp
