Christian Heimes wrote at 2006-9-19 16:02 +0200:
> ...
>* As far as I understand the security system Zope2's can't protect
>attributes and descriptors (properties) with
>security.declarePrivate('attributename').
Since Zope 2.8, this is no longer true.
You can protect simple type attributes and de
On Tue, Sep 19, 2006 at 04:34:55PM +0200, Philipp von Weitershausen wrote:
| >In general I preferre old and well tested security code over new
| >security related code. Martjin, Phillip and all the other people are
| >doing a great job with Five but well ... it's new code. New code tends
| >to brea
Christian Heimes wrote:
Zope's security declarations have to be called with a method *name* AS
STRING. Developers are human beeings and human beeings tend to make
small errors like typos. Or they forget to change the security
declaration when they rename a method. Zope doesn't raise an error when
Hey Christian, welcome back! :)
Christian Heimes wrote:
Lennart Regebro schrieb:
You have many good points in your list of troubles. Many of them are
resolved by using security declarations through ZCML instead. It would
be interesting to here your views on this.
In general I preferre old and
Lennart Regebro schrieb:
> You have many good points in your list of troubles. Many of them are
> resolved by using security declarations through ZCML instead. It would
> be interesting to here your views on this.
In general I preferre old and well tested security code over new
security related co
