subject:"\[Zope\-dev\] urllib not available in Python Scripts\?"

Re: [Zope-dev] urllib not available in Python Scripts?

2000-12-17 Thread Evan Simpson


From: "Itai Tavor" [EMAIL PROTECTED]
import urllib
urllib.__allow_access_to_unprotected_subobjects__ = 1
 
 Ok, this is simple enough, and it works. But... it opens access to 
 everything in urllib.

For now, the best way is to use a dictionary of names, like this:

  import urllib
  urllib.__allow_access_to_unprotected_subobjects__ = {
'quote': 1, 'unquote': 1,
  }

Cheers,

Evan @ digicool  4-am


___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )

Re: [Zope-dev] urllib not available in Python Scripts?

2000-12-17 Thread Itai Tavor


Evan Simpson wrote:

From: "Itai Tavor" [EMAIL PROTECTED]
 import urllib
 urllib.__allow_access_to_unprotected_subobjects__ = 1

  Ok, this is simple enough, and it works. But... it opens access to
  everything in urllib.

For now, the best way is to use a dictionary of names, like this:

   import urllib
   urllib.__allow_access_to_unprotected_subobjects__ = {
 'quote': 1, 'unquote': 1,
   }

Cheers,

Evan @ digicool  4-am

Thanks! Nice and simple.

The moral of this story is, you got to know what to ask :-)
-- 
Itai Tavor"Je sautille, donc je suis."
C3Works[EMAIL PROTECTED]  - Kermit the Frog

"If you haven't got your health, you haven't got anything"


___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )

Re: [Zope-dev] urllib not available in Python Scripts?

2000-12-16 Thread Ken Manheimer


On Sat, 16 Dec 2000, Evan Simpson wrote:

 From: "Itai Tavor" [EMAIL PROTECTED]
 [...]
 Sure.  Since you've already got a MoreBuiltins module, that's probably a
 fine place to put this.  In MoreBuiltins/__init__.py (or a brand new Product
 directory of your choice) put the following lines:
 
   import urllib
   urllib.__allow_access_to_unprotected_subobjects__ = 1
 
 ...and similarly if you want to declare other modules PS-importable.  As of
 2.3, the proper way to do this will be:
 
   from AccessControl import ModuleSecurityInfo
   ModuleSecurityInfo('urllib').setDefaultAccess(1)

I wonder whether that ought to be something like:

  from AccessControl import ModuleSecurityInfo, ENABLE_ACCESS
  ModuleSecurityInfo('urllib').setDefaultAccess(ENABLE_ACCESS)

?

The benefit of having an explicit name for "enable" is marginal, but would
become significant if there were other access modes besides ENABLE and
DISABLE - eg, "ENABLE_METHODS", "ENABLE_ATTRIBUTES", etc...

Ken Manheimer
[EMAIL PROTECTED]


___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )

Re: [Zope-dev] urllib not available in Python Scripts?

2000-12-15 Thread Evan Simpson


From: Itai Tavor [EMAIL PROTECTED]
 In Python Methods I could do urllib.quote(...). This doesn't work in
 Python Scripts. Is quote considered a security risk?

No, but only the modules available to DTML are importable by default.   You
would need to provide security declarations in order to import anything from
urllib.

Cheers,

Evan @ digicool  4-am


___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )

Re: [Zope-dev] urllib not available in Python Scripts?

2000-12-15 Thread Dieter Maurer


Itai Tavor writes:
  In Python Methods I could do urllib.quote(...). This doesn't work in 
  Python Scripts. Is quote considered a security risk?
"quote" not, but maybe "urllib".


Dieter

___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )

[Zope-dev] urllib not available in Python Scripts?

2000-12-14 Thread Itai Tavor


Hi,

sorry for the recent barrage of posts...

In Python Methods I could do urllib.quote(...). This doesn't work in 
Python Scripts. Is quote considered a security risk?

Itai
-- 
Itai Tavor"Je sautille, donc je suis."
C3Works[EMAIL PROTECTED]  - Kermit the Frog

"If you haven't got your health, you haven't got anything"


___
Zope-Dev maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope )

Re: [Zope-dev] urllib not available in Python Scripts?

Re: [Zope-dev] urllib not available in Python Scripts?

Re: [Zope-dev] urllib not available in Python Scripts?

Re: [Zope-dev] urllib not available in Python Scripts?

Re: [Zope-dev] urllib not available in Python Scripts?

[Zope-dev] urllib not available in Python Scripts?

6 matches

Site Navigation

Mail list logo

Footer information