I've done it with traversal and didn't need to use repoze.what. Basically you just derive your __acl__ attribute anyway you wish. The trick is getting the user associated with the request, but if you are passing in the request to your root_factory function that shouldn't be too much of a problem.
get familiar with these things and you should be well on your way. http://docs.pylonsproject.org/projects/pyramid/1.0/narr/resources.html http://docs.pylonsproject.org/projects/pyramid/1.0/narr/security.html#assigning-acls-to-your-resource-objects -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To view this discussion on the web visit https://groups.google.com/d/msg/pylons-discuss/-/3lxPDkBdoCEJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
