Re: [Zope-CMF] Security declarations on adapters

2012-09-06 Thread Laurence Rowe
On 6 September 2012 14:06, Charlie Clark charlie.cl...@clark-consulting.eu wrote: Am 06.09.2012, 13:11 Uhr, schrieb yuppie y.2...@wcm-solutions.de: Good. What is, in your view, missing from a final release? Laurence proposed some changes for the utilities:

Re: [Zope-CMF] [dev] tools as utilities

2012-09-05 Thread Laurence Rowe
On 5 September 2012 11:48, yuppie y.2...@wcm-solutions.de wrote: 2.) Site root lookup: = In several tools we still assume aq_parent(aq_inner(self)) is the portal. Or other code uses the tool as context object, expecting root and request in its acquisition chain. These

Re: [Zope-CMF] [dev] tools as utilities

2012-09-05 Thread Laurence Rowe
On 5 September 2012 13:26, yuppie y.2...@wcm-solutions.de wrote: Hi Laurence! Laurence Rowe wrote: On 5 September 2012 11:48, yuppie y.2012-E2EsyBC0hj3+aS/vkh9...@public.gmane.org wrote: 2.) Site root lookup: = In several tools we still assume aq_parent(aq_inner(self

Re: [Zope-CMF] [dev] tools as utilities

2012-09-05 Thread Laurence Rowe
On 5 September 2012 15:36, yuppie y.2...@wcm-solutions.de wrote: Hi! Laurence Rowe wrote: On 5 September 2012 13:26, yuppie y.2012-E2EsyBC0hj3+aS/vkh9...@public.gmane.org wrote: I don't think relying on getSite() is a good idea. As you mention it doesn't always return the portal object

Re: [Zope-CMF] [dev] tools as utilities

2012-09-05 Thread Laurence Rowe
On 5 September 2012 17:15, yuppie y.2...@wcm-solutions.de wrote: Laurence Rowe wrote: Maybe I'm missing something, but the various methods of IURLTool rely on portal.getPhysicalPath() returning the correct result. Take getRelativeContentPath for example: portal is at /folder/portal content

[Zope-dev] makeClass and makeClassForTemplate

2012-09-04 Thread Laurence Rowe
Hi Yuppie, Now that you've cleaned up Products.Five in Zope trunk, what should other packages that use ``makeClass`` and ``makeClassForTemplate`` change to? For five.formlib I simply exchanged ``makeClass`` for ``type`` and ``makeClassForTemplate`` for ``SimpleViewClass``, see:

Re: [Zope-dev] makeClass and makeClassForTemplate

2012-09-04 Thread Laurence Rowe
On 4 September 2012 22:23, yuppie y.2...@wcm-solutions.de wrote: Hi Laurence! Laurence Rowe wrote: Now that you've cleaned up Products.Five in Zope trunk, what should other packages that use ``makeClass`` and ``makeClassForTemplate`` change to? Well. I wasn't aware of the fact

Re: [Zope-dev] Restoring zLOG trunk

2012-08-30 Thread Laurence Rowe
On 30 August 2012 15:56, Laurence Rowe l...@lrowe.co.uk wrote: On 29 August 2012 15:44, Tres Seaver tsea...@palladion.com wrote: On 08/29/2012 09:25 AM, Tres Seaver wrote: That base class has been gone since ZConfig 2.9.2. I don't think the Zope2 trunk has pinned / unpinned ZConfig in a long

Re: [Zope] Python scripts

2012-07-06 Thread Laurence Rowe
On 6 July 2012 14:09, Richard Harley rich...@scholarpack.com wrote: On Zope 2.10 is there a simple/universal way to only allow python scripts to be called by DTML methods or other python scripts and not directly TTW? You can check that the script is not the published object with: if

Re: [Zope] Python scripts

2012-07-06 Thread Laurence Rowe
On 6 July 2012 16:36, Richard Harley rich...@scholarpack.com wrote: That works great, thanks. So there is no way to do this across, say, a folder with hundreds of scripts in without duplicating the code in each individually? For one Plone hotfix we took the approach of blacklisting certain

Re: [Zope-dev] [ZODB-Dev] RFC: release persistent as a standalone package

2012-07-01 Thread Laurence Rowe
On 1 July 2012 02:16, Leonardo Rochael Almeida leoroch...@gmail.com wrote: I'm +1 on the change even without the answer to my next question, but can you elaborate on what is the advantage of releasing persistent appart from ZODB? As well as the clearer separation of concerns it opens up the

Re: [Zope] Sessioning

2012-05-23 Thread Laurence Rowe
On 23 May 2012 10:56, Richard Harley rich...@scholarpack.com wrote: Does anyone have a recommendation on how to implement sessioning on Zope 2? Basically to set browser timeouts for the user so logout after say 20 mins of inactivity. The difficulty we've had previously is detecting what exactly

Re: [Zope] enhancements to RAM cache manager product

2012-02-09 Thread Laurence Rowe
On 9 February 2012 05:42, sathya pyt...@zeomega.com wrote: Greetings, ram cached pages using the ram cache manager product seems to be a nice way to improve response times. As far as I remember it did not work well with ZEO. Is there any merit to reengineering this product to use

Re: [Zope-dev] Zope 4 release management

2012-02-01 Thread Laurence Rowe
On 1 February 2012 14:35, Jonathan Ballet j...@multani.info wrote: On Wed, Feb 01, 2012 at 02:21:32PM +0100, Lennart Regebro wrote: What we would like to do, of course, is to have a self-hosted github. :-)  (And that exists. Buuut... it costs $250 per commiter and year, so that's not an

Re: [Zope-dev] Zope 4 ZMI sprint report

2012-02-01 Thread Laurence Rowe
On 26 January 2012 04:29, Christopher Lozinski lozin...@freerecruiting.com wrote: Thank you for the sprint report. I think it is great that you are working on upgrading the ZMI. I am also turning my attention to this problem.  Clearly ZMI needs an upgrade. I need an upgraded ZMI. Today I

Re: [Zope-dev] Zope 2 WSGI investigation

2012-01-08 Thread Laurence Rowe
On 3 January 2012 08:34, Sylvain Viollon sylv...@infrae.com wrote: Op 1 jan 2012, om 20:39 heeft Martin Aspeli het volgende geschreven: Hi,  Hello, There are three known WSGI implementations of the Zope 2 publisher. I've had a look at them and made some notes about what I think

Re: [Zope-dev] Supporting interworking with repository branches on github

2011-11-24 Thread Laurence Rowe
On 24 November 2011 07:58, Wichert Akkerman wich...@wiggy.net wrote: On 11/24/2011 01:29 AM, Florian Friesdorf wrote: On Wed, 23 Nov 2011 09:50:49 -0500, Tres Seavertsea...@palladion.com   wrote: Second, it is already feasible to work with modern VCSes against the existing SVN repository:  

Re: [Zope-dev] Supporting interworking with repository branches on github

2011-11-23 Thread Laurence Rowe
On 23 November 2011 06:58, Wolfgang Schnerring w...@gocept.com wrote: * Tres Seaver tsea...@palladion.com [2011-11-22 22:46]: On 11/22/2011 12:13 PM, Laurence Rowe wrote: While the Zope Foundation deliberates on version control, I think it's likely that development will continue using Git

Re: [Zope-dev] Zope 4 roadmap

2011-11-22 Thread Laurence Rowe
On 22 November 2011 10:13, Sylvain Viollon sylv...@infrae.com wrote: Op 17 nov 2011, om 20:57 heeft Tres Seaver het volgende geschreven:   Hello, On 11/17/2011 02:05 PM, Laurence Rowe wrote: On 17 November 2011 15:23, Martin Aspeli optilude+li...@gmail.com wrote: On 17 November 2011 14

[Zope-dev] Supporting interworking with repository branches on github

2011-11-22 Thread Laurence Rowe
As you are already aware, at the SF Zope sprint we used Git and github for our work. The work contained in https://github.com/zopefoundation is by people who have already signed the Zope Foundation contributor agreement. While the Zope Foundation deliberates on version control, I think it's

[Zope-dev] Zope 4 release management

2011-11-17 Thread Laurence Rowe
Along with David Glick, I would like to volunteer for the Zope 4 release management role, where I would take responsibility for producing the initial release of Zope 4 and David would then take over for the maintenance releases. In doing so, I thought it would be helpful to set out our

[Zope-dev] Zope 4 roadmap

2011-11-17 Thread Laurence Rowe
Here's my current understanding of the Zope 4 roadmap. Zope 4 -- Significant progress has already been made on the following features and I expect they should all land in time for a Zope 4 release: - Storing parent pointers (elro, davisagli): we have a branch of Zope that changes OFS to

Re: [Zope-dev] Zope 4 release management

2011-11-17 Thread Laurence Rowe
On 17 November 2011 16:32, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 11/17/2011 07:25 AM, Laurence Rowe wrote: Along with David Glick, I would like to volunteer for the Zope 4 release management role, where I would take responsibility

Re: [Zope-dev] Zope 4 roadmap

2011-11-17 Thread Laurence Rowe
On 17 November 2011 15:23, Martin Aspeli optilude+li...@gmail.com wrote: On 17 November 2011 14:46, Laurence Rowe l...@lrowe.co.uk wrote: Here's my current understanding of the Zope 4 roadmap. Zope 4 -- Significant progress has already been made on the following features and I expect

Re: [Zope-dev] Zope 4 release management

2011-11-17 Thread Laurence Rowe
On 17 November 2011 19:45, Tres Seaver tsea...@palladion.com wrote: Again, this is a choice to be made by the foundation:  any polling will be done by the members of the foundation (this might be the biggest non-election item on the agenda for the next annual meeting). When is the next annual

Re: [Zope-dev] Zope 4 release management

2011-11-17 Thread Laurence Rowe
On 17 November 2011 20:20, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 11/17/2011 03:14 PM, Laurence Rowe wrote: On 17 November 2011 19:45, Tres Seaver tsea...@palladion.com wrote: Again, this is a choice to be made by the foundation:  any

Re: [Zope-dev] Revert removal of ++skin++ in Zope4?

2011-11-16 Thread Laurence Rowe
On 16 November 2011 10:30, Christian Theune c...@gocept.com wrote: Hi, I'd like to revert the removal of the ++skin++ traverser in Zope 4. As we're working on a replacement ZMI at a sprint currently (more details about that in a bit) we'd like to leverage this feature.  From my

Re: [Zope-dev] Revert removal of ++skin++ in Zope4?

2011-11-16 Thread Laurence Rowe
On 16 November 2011 12:28, Lennart Regebro rege...@gmail.com wrote: On Wed, Nov 16, 2011 at 12:53, Charlie Clark charlie.cl...@clark-consulting.eu wrote: Am 16.11.2011, 12:49 Uhr, schrieb Lennart Regebro rege...@gmail.com: Right. Could we standardize on skins or browserlayers plz? Having both

[Zope-Checkins] SVN: Zope/branches/elro-parent-pointers/ New branch for adding parent pointers to Zope

2011-10-31 Thread Laurence Rowe
Log message for revision 123200: New branch for adding parent pointers to Zope Changed: A Zope/branches/elro-parent-pointers/ -=- ___ Zope-Checkins maillist - Zope-Checkins@zope.org https://mail.zope.org/mailman/listinfo/zope-checkins

[Zope-Checkins] SVN: Zope/branches/elro-parent-pointers/src/OFS/ Set parent pointers

2011-10-31 Thread Laurence Rowe
Log message for revision 123223: Set parent pointers Changed: U Zope/branches/elro-parent-pointers/src/OFS/Application.py U Zope/branches/elro-parent-pointers/src/OFS/ObjectManager.py U Zope/branches/elro-parent-pointers/src/OFS/tests/testApplication.py U

[Zope-Checkins] SVN: Zope/branches/elro-parent-pointers/src/OFS/tests/testCopySupport.py Avoid makerequest so app is root object (other tests should also avoid this to match the new reality.)

2011-10-31 Thread Laurence Rowe
Log message for revision 123224: Avoid makerequest so app is root object (other tests should also avoid this to match the new reality.) Changed: U Zope/branches/elro-parent-pointers/src/OFS/tests/testCopySupport.py -=- Modified:

Re: [Zope-dev] Zope 4 publisher/traversal, sprint topic

2011-10-27 Thread Laurence Rowe
On 27 October 2011 14:34, Leonardo Rochael Almeida leona...@nexedi.com wrote: Hi, Sorry for the cross-post, but I'd like to talk about a possible sprint topic for the next DZUG sprint[1], and invite myself to it :-) We'll also be sprinting on Zope 4 before the Plone conference this coming

Re: [Zope-dev] [Zope] Hotfix for security vulnerability

2011-10-25 Thread Laurence Rowe
On 24 October 2011 22:54, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On behalf of the Zope security response team, I would like to announce the availability of a hotfix for a vulnerability inadvertently published earlier today.

Re: [Zope] Hotfix for security vulnerability

2011-10-25 Thread Laurence Rowe
On 24 October 2011 22:54, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On behalf of the Zope security response team, I would like to announce the availability of a hotfix for a vulnerability inadvertently published earlier today.

Re: [Zope] serious security hole in manage users / Manage users permissions?

2011-10-24 Thread Laurence Rowe
Potential security issues should not be discussed on public mailing lists but submitted to security-respo...@zope.org. Please submit the full information to that address and do not follow up further on this list. Laurence On 24 October 2011 15:05, Niels Dettenbach n...@syndicat.com wrote: Dear

Re: [Zope-dev] [collective.recipe.solrinstance] Example not working

2011-10-17 Thread Laurence Rowe
On 17 October 2011 18:36, Hanno Schlichting ha...@hannosch.eu wrote: On Mon, Oct 17, 2011 at 11:19 AM, Andreas Jung li...@zopyx.com wrote: I used the single-core example for the solrinstance recipe: I think someone reported the Solr core examples to be broken in the latest releases. I don't

Re: [Zope] Error Migration Data.fs from Zope 2.10.4 to 2.13.8

2011-10-06 Thread Laurence Rowe
You probably need to run it using ZODB 3.8 (i.e. with your Zope 2.10 instance.) Laurence On 6 October 2011 13:31, Frank Kauff fka...@biologie.uni-kl.de wrote: Unfortunately, it's not working: When starting within the 2.10.4 environment, I get the error Traceback (most recent call last):  

Re: [Zope] Error Migration Data.fs from Zope 2.10.4 to 2.13.8

2011-10-06 Thread Laurence Rowe
On 6 October 2011 14:40, Frank Kauff fka...@biologie.uni-kl.de wrote: On 10/06/2011 03:21 PM, Laurence Rowe wrote: You probably need to run it using ZODB 3.8 (i.e. with your Zope 2.10 instance.) I think that's what  did: /opt/Zope-2.10/bin/python ../strip_versions.py Data.fs

Re: [Zope] Error Migration Data.fs from Zope 2.10.4 to 2.13.8

2011-10-06 Thread Laurence Rowe
to read my Data.fs but recent enough to run the conversion script? Can i get a 2.11 version with ZODB 3.8 from somewhere? Thanks, Frank On 10/06/2011 05:54 PM, Laurence Rowe wrote: On 6 October 2011 14:40, Frank Kaufffka...@biologie.uni-kl.de  wrote: On 10/06/2011 03:21 PM, Laurence Rowe

Re: [Zope-dev] zope.sqlalchemy+py3 test failures.

2011-09-29 Thread Laurence Rowe
On 29 September 2011 10:33, Chris McDonough chr...@plope.com wrote: On Tue, 2011-09-27 at 12:40 -0400, Tres Seaver wrote: This bootstrap is from Jim's '2' branch of zc.buildout:  http://svn.zope.org/zc.buildout/branches/2/bootstrap/bootstrap.py?rev=121484view=auto It is designed to work with

Re: [Zope-dev] zope.sqlalchemy+py3 test failures.

2011-09-29 Thread Laurence Rowe
On 29 September 2011 16:51, Chris Withers ch...@simplistix.co.uk wrote: It'd also be great if we could get support for SA 0.7+'s new events system... I'm not convinced this will give any benefit. Currently we just require: Session = scoped_session(sessionmaker(bind=engine, ...

Re: [Zope-dev] [BlueBream] Referring to same interface using zope.schema.Object

2011-07-22 Thread Laurence Rowe
On 22 July 2011 13:32, Joshua Immanuel j...@hipro.co.in wrote: Hello, On Fri, 2011-07-22 at 13:41 +0200, Jacob Holm wrote: On 2011-07-22 13:26, Brian Sutherland wrote: This would be my first guess:     class INode(Interface):         pass     INode.parent = Object(            

[Zope-dev] Publisher, WSGI and possibility for simplification

2011-07-07 Thread Laurence Rowe
Breaking this out as the thread has got overlong. On 4 July 2011 09:49, Sylvain Viollon sylv...@infrae.com wrote: On Sun, 03 Jul 2011 01:09:17 -0400 Chris McDonough chr...@plope.com wrote: On Sun, 2011-07-03 at 03:41 +0200, Hanno Schlichting wrote:  Hello, - Continue to remove

Re: [Zope-dev] direction

2011-07-06 Thread Laurence Rowe
On 5 July 2011 20:21, Leonardo Rochael Almeida leoroch...@gmail.com wrote: Hi Hanno, On Tue, Jul 5, 2011 at 11:18, Hanno Schlichting ha...@hannosch.eu wrote: On Tue, Jul 5, 2011 at 11:03 AM, Martin Aspeli optilude+li...@gmail.com wrote: I would've thought it would also be possible for those

Re: [Zope-dev] direction

2011-07-06 Thread Laurence Rowe
On 6 July 2011 15:27, Sascha Welter zopel...@betabug.ch wrote: I'm sorry, I don't really understand the current line of discussion yet. I see a lot of discussion which part is going to be cut out and dropped, or replaced. I haven't yet understood what's the end target for the project. So,

[Zope-dev] Zope2 Sprint. 31 October - 2 November, San Francisco

2011-07-06 Thread Laurence Rowe
To make the most of all those air miles for people attending the Plone Conference, I want to have a Zope2 Sprint on the preceding days (overlapping with the training.) Topics to include: * Making Acquisition optional * Adding __parent__ pointers (see

Re: [Zope-dev] direction

2011-07-05 Thread Laurence Rowe
On 5 July 2011 11:22, Jonas Meurer jo...@freesources.org wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Am 05.07.2011 12:04, schrieb Hanno Schlichting: On Tue, Jul 5, 2011 at 11:56 AM, Martin Aspeli optilude+li...@gmail.com wrote: On 5 July 2011 10:31, Hanno Schlichting

Re: [Zope-dev] direction

2011-07-04 Thread Laurence Rowe
On 4 July 2011 13:04, Leonardo Rochael Almeida leoroch...@gmail.com wrote: On the other hand, if we could get the ZTK version of this working (the one that used /++vh-host and /++vh-root url segments) I think it should be ok, and we could get rid of VHM completely. The BlueBream URL syntax is

Re: [Zope] is it possible to upgrade from 2.9 to 2.13?

2011-07-04 Thread Laurence Rowe
On 4 July 2011 13:26, Fernando ferna...@cmartins.nl wrote: Stefan, thanks for your reply. In the meanwhile I was indeed able to put products in INSTANCE/Products (Zope 2.13.8). I did not know about that option you mention and I cannot check it now, but the Products from pypi were being

Re: [Zope] is it possible to upgrade from 2.9 to 2.13?

2011-07-04 Thread Laurence Rowe
On 4 July 2011 14:48, Fernando ferna...@cmartins.nl wrote: On Jul 4, 2011 13:30 Laurence Rowe l...@lrowe.co.uk wrote: I suggest using http://pypi.python.org/pypi/plone.recipe.zope2instance (it is not Plone specific) and referring to the Plone documentation for installing add-ons: http

[Zope-Annce] Security Hotfix 20110622 released

2011-06-28 Thread Laurence Rowe
Last week, the Zope and Plone security teams announced the discovery of a serious security issue affecting all recent versions of Zope and Plone, as well as the planned release of a Hotfix to address this issue to be made today, June 28th at 1500 UTC. The Plone and Zope security teams are

[Zope-dev] Security announcement update

2011-06-28 Thread Laurence Rowe
This is an update on today's security hotfix release. The fix will be released at 15:00 UTC today, Tuesday 28th June, 2011 (11:00am US EDT.) Updated versions of Zope 2 containing the security fix will be released at the same time. For details on which versions of Zope and Plone are affected,

Re: [Zope-dev] [Zope] Security announcement update

2011-06-28 Thread Laurence Rowe
On 28 June 2011 14:40, Norbert Marrale norbertmarr...@yahoo.com wrote: This should be clarified too: You should, however, make sure that you are running either Zope 2.10.13 or Zope 2.11.8  and PluggableAuthService 1.5.5, 1.6.5 or 1.7.5 Why must PluggableAuthService (+ its dependencies) even

[Zope] Security announcement update

2011-06-28 Thread Laurence Rowe
This is an update on today's security hotfix release. The fix will be released at 15:00 UTC today, Tuesday 28th June, 2011 (11:00am US EDT.) Updated versions of Zope 2 containing the security fix will be released at the same time. For details on which versions of Zope and Plone are affected,

Re: [Zope] [Zope-dev] Security announcement update

2011-06-28 Thread Laurence Rowe
On 28 June 2011 14:40, Norbert Marrale norbertmarr...@yahoo.com wrote: This should be clarified too: You should, however, make sure that you are running either Zope 2.10.13 or Zope 2.11.8  and PluggableAuthService 1.5.5, 1.6.5 or 1.7.5 Why must PluggableAuthService (+ its dependencies) even

[Zope] Security Hotfix 20110622 released

2011-06-28 Thread Laurence Rowe
Last week, the Zope and Plone security teams announced the discovery of a serious security issue affecting all recent versions of Zope and Plone, as well as the planned release of a Hotfix to address this issue to be made today, June 28th at 1500 UTC. The Plone and Zope security teams are

Re: [Zope] easy_install Zope glitch on Debian aqueeze

2011-06-23 Thread Laurence Rowe
On 23 June 2011 23:39, Eric d'Halibut eric.hali...@gmail.com wrote: Testing an install of Zope on an up-to-date Debian squeeze install, I get this below. Versions include: python2.6                       2.6.6-8+b1 gcc                                  4:4.4.5-1 Does this ring any bells with

[Zope-dev] Security announcement

2011-06-22 Thread Laurence Rowe
On behalf of the Plone and Zope Security Teams I'd like to draw your attention to a security announcement that has just been published. This is a pre-announcement only, it does not contain any vulnerability details. Your sites are a safe today as they were yesterday. However, as the problem that

[Zope] Security announcement

2011-06-22 Thread Laurence Rowe
On behalf of the Plone and Zope Security Teams I'd like to draw your attention to a security announcement that has just been published. This is a pre-announcement only, it does not contain any vulnerability details. Your sites are a safe today as they were yesterday. However, as the problem that

Re: [Zope-dev] Sharing session between different zope servers

2011-06-15 Thread Laurence Rowe
On 15 June 2011 19:05, Baiju M baiju.m.m...@gmail.com wrote: On Wed, Jun 15, 2011 at 11:07 PM, Hanno Schlichting ha...@hannosch.eu wrote: On Wed, Jun 15, 2011 at 7:26 PM, Baiju M baiju.m.m...@gmail.com wrote: Is memcached a reliable storage for session data ? I would like to hear others

Re: [Zope-dev] [BlueBream] Reg. persisting data in ZODB via forms

2011-06-09 Thread Laurence Rowe
On 9 June 2011 07:12, Joshua Immanuel j...@hipro.co.in wrote: Hello Jonah, On Wed, 2011-06-08 at 22:25 -0700, Jonah Crawford wrote: Ah yes you do that in the zcml right after you define your object in a class :) I am not aware of the zcml configuration that can mark a class as persistent.

Re: [Zope-dev] Reg. persisting data in ZODB via forms

2011-06-08 Thread Laurence Rowe
On 8 June 2011 10:05, Joe Steeve j...@hipro.co.in wrote: Hello Charlie, On Wed, 2011-06-08 at 10:48 +0200, Charlie Clark wrote: From memory I can recall something similar related to making changes to copies of instance attributes but failing to apply them to attributes and needing to

Re: [Zope-dev] Reg. persisting data in ZODB via forms

2011-06-08 Thread Laurence Rowe
On 8 June 2011 20:47, Joe Steeve j...@hipro.co.in wrote: On Wed, 2011-06-08 at 14:48 +0100, Laurence Rowe wrote: A BTree efficiently stores a large number of key,value pairs because the storage is split across a number of persistent objects (buckets) each of which stores a part of the tree, so

Re: [Zope-dev] Metaclass resolution for InterfaceClass

2011-06-01 Thread Laurence Rowe
On 1 May 2011 20:28, Laurence Rowe l...@lrowe.co.uk wrote: While experimenting with my InterfaceClass subclass I noticed that it was only being used when it was specified as the first of the bases. I believe this is because InterfaceClass is not a subclass of ``type``, so the normal metaclass

Re: [Zope-dev] Adding a _frame argument to InterfaceClass.__init__ to make it subclassable

2011-05-01 Thread Laurence Rowe
On 1 May 2011 01:06, Laurence Rowe l...@lrowe.co.uk wrote: Hi, I'd like to apply the attached patch to zope.interface trunk to make it more easily subclassable without having to copy and paste a chunk of its __init__ into the subclass' __init__. On closer inspection, this doesn't seem

[Zope-dev] Metaclass resolution for InterfaceClass

2011-05-01 Thread Laurence Rowe
While experimenting with my InterfaceClass subclass I noticed that it was only being used when it was specified as the first of the bases. I believe this is because InterfaceClass is not a subclass of ``type``, so the normal metaclass derivation logic is not applied. The attached patch implements

[Zope-dev] Adding a _frame argument to InterfaceClass.__init__ to make it subclassable

2011-04-30 Thread Laurence Rowe
Hi, I'd like to apply the attached patch to zope.interface trunk to make it more easily subclassable without having to copy and paste a chunk of its __init__ into the subclass' __init__. Motivating factor is: I need an Interface with a hook that gets called after InterfaceClass.__init__ to allow

[Zope-Checkins] SVN: Zope/branches/2.13/ ZPublisher: HTTPResponse.appendHeader now keeps header values to a single

2011-04-19 Thread Laurence Rowe
Log message for revision 121447: ZPublisher: HTTPResponse.appendHeader now keeps header values to a single line by default to avoid causing problems for proxy servers which do not correctly handle multi-line headers. Changed: U Zope/branches/2.13/doc/CHANGES.rst U

[Zope-Checkins] SVN: Zope/trunk/ Merge [121447] to trunk - ZPublisher: HTTPResponse.appendHeader now keeps header values to a single

2011-04-19 Thread Laurence Rowe
Log message for revision 121448: Merge [121447] to trunk - ZPublisher: HTTPResponse.appendHeader now keeps header values to a single line by default to avoid causing problems for proxy servers which do not correctly handle multi-line headers. (Merged from 2.13 branch.) Changed: U

Re: [Zope-dev] [Zope2] Multiline response headers causing problems for proxies.

2011-04-19 Thread Laurence Rowe
On 18 April 2011 17:01, Laurence Rowe l...@lrowe.co.uk wrote: When using response.appendHeader, Zope appends the new value following an ,\r\n\t which splits the header over multiple lines. While this behaviour is standards compliant, it causes problems for both Varnish [1] and Nginx [2] which

[Zope-CMF] CMF 2.3 plans?

2011-04-19 Thread Laurence Rowe
Hi, What are the CMF 2.3 release plans? If we wanted to consider this for Plone 4.2 we would need a release fairly soon so we could make the required changes around member handling. Laurence ___ Zope-CMF maillist - Zope-CMF@zope.org

Re: [Zope-CMF] CMF 2.3 plans?

2011-04-19 Thread Laurence Rowe
On 19 April 2011 12:50, Charlie Clark charlie.cl...@clark-consulting.eu wrote: Am 19.04.2011, 13:41 Uhr, schrieb Jens Vagelpohl j...@dataflake.org: Hi Laurence, I could create a first alpha release for the various packages if that helps. For the first beta a.k.a. trunk branch point I need to

[Zope-dev] [Zope2] Multiline response headers causing problems for proxies.

2011-04-18 Thread Laurence Rowe
When using response.appendHeader, Zope appends the new value following an ,\r\n\t which splits the header over multiple lines. While this behaviour is standards compliant, it causes problems for both Varnish [1] and Nginx [2] which may then mangle the header value. In fact the HTTP 1.0 spec notes

Re: [Zope-dev] [Zope2] Multiline response headers causing problems for proxies.

2011-04-18 Thread Laurence Rowe
On 18 April 2011 19:36, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 04/18/2011 12:01 PM, Laurence Rowe wrote: When using response.appendHeader, Zope appends the new value following an ,\r\n\t which splits the header over multiple lines. While

[Zope-dev] Ensuring at least min_length subwidgets are rendered for the MultiWidget

2011-04-14 Thread Laurence Rowe
The attached patch ensures that when in input mode, the MultiWidget will render at least field.min_length subwidgets. This streamlines the add process, currently a user only finds out they need to add to a form when it is submitted and the error message is rendered. They must then make another

Re: [Zope-dev] CSRF protection for z3c.form

2011-04-06 Thread Laurence Rowe
, 4. April 2011 19:54 An: d...@projekt01.ch Cc: 'Laurence Rowe'; 'zope-dev'; stephan.rich...@gmail.com Betreff: Re: [Zope-dev] CSRF protection for z3c.form On 04/04/2011 10:22 AM, Roger wrote: Just because you can write login forms with z3c.form this package has nothing to do

Re: [Zope-dev] CSRF protection for z3c.form

2011-04-06 Thread Laurence Rowe
.ch wrote: Hi Shane -Ursprüngliche Nachricht- Von: Shane Hathaway [mailto:sh...@hathawaymix.org] Gesendet: Montag, 4. April 2011 19:54 An: d...@projekt01.ch Cc: 'Laurence Rowe'; 'zope-dev'; stephan.rich...@gmail.com Betreff: Re: [Zope-dev] CSRF protection for z3c.form

Re: [Zope-dev] CSRF protection for z3c.form

2011-04-05 Thread Laurence Rowe
On 4 April 2011 19:16, Roger d...@projekt01.ch wrote: Hi Shane -Ursprüngliche Nachricht- Von: Shane Hathaway [mailto:sh...@hathawaymix.org] Gesendet: Montag, 4. April 2011 19:54 An: d...@projekt01.ch Cc: 'Laurence Rowe'; 'zope-dev'; stephan.rich...@gmail.com Betreff: Re: [Zope-dev

Re: [Zope-dev] CSRF protection for z3c.form

2011-04-05 Thread Laurence Rowe
On 4 April 2011 16:53, Stephan Richter srich...@cosmos.phy.tufts.edu wrote: On Monday, April 04, 2011, Laurence Rowe wrote: The authenticator is described on http://pypi.python.org/pypi/plone.protect, but basically it adds an HMAC-SHA signed token into the form submission. By validating

[Zope-dev] CSRF protection for z3c.form

2011-04-04 Thread Laurence Rowe
I've been looking into how we might add CSRF protection to z3c.form forms as we will be including z3c.form in Plone 4.1. Currently in Plone, we use plone.protect to add an authentication token to our forms and then check the token in the methods that get called. (plone.protect is BSD licensed, but

Re: [Zope-dev] CSRF protection for z3c.form

2011-04-04 Thread Laurence Rowe
On 4 April 2011 14:57, Stephan Richter srich...@cosmos.phy.tufts.edu wrote: On Monday, April 04, 2011, Laurence Rowe wrote: I'd be interested to know how other z3c.form users approach CSRF protection and what approach they would recommend. Hi Lawrence, I am okay with (1), but find (3) ore

Re: [Zope-dev] Zope Tests: 109 OK, 24 Failed, 4 Unknown

2011-03-31 Thread Laurence Rowe
On 31 March 2011 10:15, Gediminas Paulauskas mene...@pov.lt wrote: 2011/3/23 Laurence Rowe l...@lrowe.co.uk: On 23 March 2011 14:43, Tres Seaver tsea...@palladion.com wrote: Multiple 'Content-Length' headers is definitely a Bad Thing.  I filed a bug, which Mark Ramm has promised to escalate

Re: [Zope-dev] SVN: Zope/trunk/ Adding support for ``IStreamIterator`` to WSGI publishing machinery.

2011-03-28 Thread Laurence Rowe
On 26 March 2011 17:14, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 03/26/2011 12:53 PM, Malthe Borch wrote: Log message for revision 121131:   Adding support for ``IStreamIterator`` to WSGI publishing machinery. Changed:   U  

Re: [Zope-dev] Zope Tests: 109 OK, 24 Failed, 4 Unknown

2011-03-23 Thread Laurence Rowe
On 23 March 2011 14:43, Tres Seaver tsea...@palladion.com wrote: Multiple 'Content-Length' headers is definitely a Bad Thing.  I filed a bug, which Mark Ramm has promised to escalate:  https://sourceforge.net/apps/trac/sourceforge/ticket/18486 I have a patch for setuptools which works around

Re: [Zope-CMF] GenericSetup global registries

2011-03-09 Thread Laurence Rowe
On 8 March 2011 16:26, Wichert Akkerman wich...@wiggy.net wrote: On 2011-3-8 17:08, Godefroid Chapelle wrote: Hello, GenericSetup has global registries for profiles and steps. They are a PITA when testing. For instance, plone.app.testing has to make a complicated dance to record and

Re: [Zope-dev] ZPublisher: using zope.formlib and z3c.form in Zope 2

2011-03-03 Thread Laurence Rowe
On 2 March 2011 11:29, yuppie y.2...@wcm-solutions.de wrote: Laurence Rowe wrote: On 2 March 2011 10:00, yuppiey.2...@wcm-solutions.de  wrote: Martin Aspeli wrote: I don't know what setPageEncoding() does, though. It sets a response Content-Type header with the first charset processInputs

Re: [Zope-dev] string exceptions

2011-02-25 Thread Laurence Rowe
On 25 February 2011 10:58, Godefroid Chapelle got...@bubblenet.be wrote: Hi, I find a few string exceptions leftover in Zope 2.13 code. However, they are not allowed anymore in Python 2.6. I guess that the remaining string exceptions are in dead/semidead code. What practice has been

Re: [Zope-dev] string exceptions

2011-02-25 Thread Laurence Rowe
On 25 February 2011 11:03, Laurence Rowe l...@lrowe.co.uk wrote: On 25 February 2011 10:58, Godefroid Chapelle got...@bubblenet.be wrote: Hi, I find a few string exceptions leftover in Zope 2.13 code. However, they are not allowed anymore in Python 2.6. I guess that the remaining string

Re: [Zope-dev] string exceptions

2011-02-25 Thread Laurence Rowe
On 25 February 2011 11:09, Godefroid Chapelle got...@bubblenet.be wrote: Le 25/02/11 12:03, Laurence Rowe a écrit : On 25 February 2011 10:58, Godefroid Chapellegot...@bubblenet.be  wrote: Hi, I find a few string exceptions leftover in Zope 2.13 code. However, they are not allowed anymore

Re: [Zope-dev] string exceptions

2011-02-25 Thread Laurence Rowe
On 25 February 2011 11:14, Godefroid Chapelle got...@bubblenet.be wrote: Le 25/02/11 12:03, Hanno Schlichting a écrit : I find a few string exceptions leftover in Zope 2.13 code.  What practice has been followed until now regarding fixing those  exceptions ? Just upgrade them to new-style

Re: [Zope-CMF] String exceptions

2011-02-25 Thread Laurence Rowe
On 25 February 2011 10:53, Godefroid Chapelle got...@bubblenet.be wrote: Hi, Python2.6 has deprecated string exceptions. However, I find about 15 string exceptions in CMF 2.2 I guess this is just something that was forgotten. Can we consider this as a critical issue for next release ? It

Re: [Zope-CMF] String exceptions

2011-02-25 Thread Laurence Rowe
On 25 February 2011 14:08, Tres Seaver tsea...@palladion.com wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 02/25/2011 05:53 AM, Godefroid Chapelle wrote: Python2.6 has deprecated string exceptions. However, I find about 15 string exceptions in CMF 2.2 I guess this is just

Re: [Zope-dev] [ZODB-Dev] transaction as context manager, exception during commit

2011-02-24 Thread Laurence Rowe
On 24 February 2011 10:17, Chris Withers ch...@simplistix.co.uk wrote: Hi Jim, The current __exit__ for transaction managers looks like this:     def __exit__(self, t, v, tb):         if v is None:             self.commit()         else:             self.abort() ..which means that if

[Zope-dev] Time for a z3c.blobfile release

2011-02-07 Thread Laurence Rowe
There have been a couple of fixes to z3c.blobfile. Would one of the package owners (uoestermeier, nadako) be able to make a new release to pypi? Thanks! Laurence ___ Zope-Dev maillist - Zope-Dev@zope.org

[Zope-Checkins] SVN: Zope/branches/elro-remove-request-container/src/Products/Five/component/makesite.txt revert change to makesite.txt

2011-01-22 Thread Laurence Rowe
Log message for revision 119840: revert change to makesite.txt Changed: U Zope/branches/elro-remove-request-container/src/Products/Five/component/makesite.txt -=- Modified: Zope/branches/elro-remove-request-container/src/Products/Five/component/makesite.txt

[Zope-Checkins] SVN: Zope/branches/elro-remove-request-container/src/OFS/Application.py Add an aq_explicit property to the Application object as it is not longer aq wrapped.

2011-01-22 Thread Laurence Rowe
Log message for revision 119841: Add an aq_explicit property to the Application object as it is not longer aq wrapped. Changed: U Zope/branches/elro-remove-request-container/src/OFS/Application.py -=- Modified: Zope/branches/elro-remove-request-container/src/OFS/Application.py

[Zope-Checkins] SVN: Zope/branches/elro-remove-request-container/src/Testing/ revert changes to makerequest, need a different approach here

2011-01-22 Thread Laurence Rowe
Log message for revision 119842: revert changes to makerequest, need a different approach here Changed: U Zope/branches/elro-remove-request-container/src/Testing/ZopeTestCase/sandbox.py U Zope/branches/elro-remove-request-container/src/Testing/ZopeTestCase/utils.py U

[Zope-Checkins] SVN: Zope/branches/elro-remove-request-container/src/Testing/ Leave makerequest using a RequestContainer to support legacy tests; make ZopeTestCase set the global request instead. All

2011-01-22 Thread Laurence Rowe
Log message for revision 119843: Leave makerequest using a RequestContainer to support legacy tests; make ZopeTestCase set the global request instead. All tests pass. Changed: U Zope/branches/elro-remove-request-container/src/Testing/ZopeTestCase/base.py U

[Zope-Checkins] SVN: Zope/branches/elro-remove-request-container/ Branch to experiment with adding a REQUEST property to the application object and remove the request container

2011-01-20 Thread Laurence Rowe
Log message for revision 119791: Branch to experiment with adding a REQUEST property to the application object and remove the request container Changed: A Zope/branches/elro-remove-request-container/ -=- ___ Zope-Checkins maillist -

[Zope-Checkins] SVN: Zope/branches/elro-remove-request-container/ Remove RequestContainer and make app.REQUEST a property looking up the globalrequest.

2011-01-20 Thread Laurence Rowe
Log message for revision 119792: Remove RequestContainer and make app.REQUEST a property looking up the globalrequest. This mostly works, but causes two problems: 1. Some very old request using Testing.makerequest are unable to clean up the globalrequest after themselves, leading to

  1   2   3   >