2009/6/25 Cezary Biele <cezary.bi...@gmail.com>:
> i'd be grateful for any suggestions how this should be achieved "the right
> way" using repoze.

The default supplied security policy consults the ``__acl__``
attribute; you could make this attribute dynamic (descriptor) and
grant permissions based on some "owner" attribute of the
Gallery-object (in effect a local principal permission map).

Alternatively, you can set up your own security policy which supports
object ownership.

\malthe
_______________________________________________
Repoze-dev mailing list
Repoze-dev@lists.repoze.org
http://lists.repoze.org/listinfo/repoze-dev

Reply via email to