Re: [Zope] proxy roles on Product methods

2006-02-14 Thread Chris Withers

Tom,

Please keep CC'ing in the list... last warning ;-)

Palermo, Tom wrote:

edit_html just returns a dtml form edit_html.dtml.


If you don't want to show us the *code* for edit_html, we can't help you...


I think the auth error is
happening when edit_html tries to load the wywiwyg editor.


I thought you said edit_html is method on a disk-based python class?!

cheers,

Chris

--
Simplistix - Content Management, Zope  Python Consulting
   - http://www.simplistix.co.uk

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] proxy roles on Product methods

2006-02-09 Thread Dieter Maurer
Chris Withers wrote at 2006-2-8 23:04 +:
 ...
If the code is in a disk-based class method, security won't be coming 
into play.

Unless you call something with internal security checks (such
as e.g. _verifyObjectPaste during manage_paste).

-- 
Dieter
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


[Zope] proxy roles on Product methods

2006-02-08 Thread Palermo, Tom



Hi All,

Is it possible to set proxy 
roles on methods located in Zope Products. I need to turn the View permission 
off on some folders so certain users can't see them in a sitemap (uses 
dtml-tree). However, I've got an edit_html method located in a Zope product that 
then needs to use stuffin one of the folders that has"View" set to 
off for that user (who's running edit_html).

Thanks,
Tom
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] proxy roles on Product methods

2006-02-08 Thread Dieter Maurer
Palermo, Tom wrote at 2006-2-8 09:59 -0500:
Is it possible to set proxy roles on methods located in Zope Products.

No, but I posted some time ago (to zope-cmf or plone-users)
code that allows you to set proxy roles on a region in
trusted code. Search for ProxyContext.



-- 
Dieter
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] proxy roles on Product methods

2006-02-08 Thread Chris Withers

Palermo, Tom wrote:
Is it possible to set proxy roles on methods located in Zope Products. 


Not really, why do you think you need to?


see them in a sitemap (uses dtml-tree). However, I've got an edit_html
method located in a Zope product that then needs to use stuff in one of the
folders that has View set to off for that user (who's running edit_html).


If the code is in a disk-based class method, security won't be coming 
into play.


What errors are you seeing?
(if you get an auth box, consider hitting cancel or enabling verbose 
security in zope.conf, restarting and trying again)


cheers,

Chris

--
Simplistix - Content Management, Zope  Python Consulting
   - http://www.simplistix.co.uk

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )