2009/6/25 Cezary Biele <cezary.bi...@gmail.com>:
> i'd be grateful for any suggestions how this should be achieved "the right
> way" using repoze.

The default supplied security policy consults the ``__acl__``
attribute; you could make this attribute dynamic (descriptor) and
grant permissions based on some "owner" attribute of the
Gallery-object (in effect a local principal permission map).

Alternatively, you can set up your own security policy which supports
object ownership.

Repoze-dev mailing list

Reply via email to