Hi,
I already posted this message several monthes ago, expecting a new Zope
version would fix the problem, but...
I have some images on my pages (let's say 10 - not a lot), rendered
either by dtml-var or a manual IMG tag.
When I render the page on some of my LAN boxes (especially with
Seb Bacon schrieb:
I also tried to name the animGif explicitely animGif.gif instead
of animGif - guessed what? - same problem!
Any more ideas, please?
have you tried doing a diff on the zope and non-zope versions to see if
zzope's somehow mangled it?
seb
Yes, I did. They were
Hi,
I'm using zope 2.2.2 with postgres 7.0.2 and ZPopyDA 0.6.4.
I encountered a problem with dtml-sqltest and capitals in column names.
Well, I simply couldn't get it to work because postgres requires
column-names with "special characters" like capitals to be enclosed
with quotation marks, ie.
Talking to myself
A slight correction to my patch so that
tablename.columname will be rendered as
to "tablename"."columnname".
146c146
from string import find, split, join, atoi, atof
---
from string import find, split, join, atoi, atof, replace
165,166c165,166
if
MySQL is case-sensitive over table names, so MERCHANTPAYMENT is not the
same as merchantpayment.
Other databases (Postgresql, Informix) are not.
Perhaps the Access/ODBC interface hides the case-sensitivity while the
direct ZMySQLDA does not ?
Hmm, I'm not very clear about differences
At 09:41 23/10/00, you wrote:
Hmm, I'm not very clear about differences between handling of (table,
column) names
in sql-databases, but postgres IS case sensitive (in some sense).
Well I'm confused !!!
I have two databases , one MySQL (3.23.25) one PostgreSQL (7.01), both
with
the same
* [EMAIL PROTECTED] (JXrn Helge B. Dahl)
On a second thought: What I _really_ want (I think, unless someone
tells me differently :-) ) is a conditional ProxyPass, to tell apache
to redirect everything _unless_ the URI is /static (or something).
But this is probably something for apache
2. logout as superuser (e.g. close all browsers...)
Ha,
I always wanted to bring in a IMNSHO better way to "logout"
- it works at least in IE.
try http://log:[EMAIL PROTECTED]
So the cached login/password are overwritten by
log/meout and zope (or every other server) brings
up the login
Hamish Lawson [EMAIL PROTECTED] wrote
Python Zope Method
Perl Zope Method
SQL Zope Method
DTML Zope Method
Rebol Zope Method
Java Zope Method
VB Zope Method
Custom Zope Mthod
etc..
and perhaps let "Zope Method" become a "ZMethod", a bit shorter.
oliver
It's a Winzip thing. I'll bet wampum generator is a .tar file, just rename
it to a .tgz file and it should open just fine.
Just some thoughts/guesses:
I'll bet Kathy uses Internet Explorer. Don't know about Netscape, but
it becomes more and more difficult to get IE _not_ to try to be "smart"
I'm create a CSV file that I would like browsers to get the "save as"
dialog when they select it.
I'm using RESPONSE.write() to write out the CSV file, and I set the
Content-Type before calling RESPONSE.write
Netscape seems to work ok, it pops up a save box for "text/csv" and
I know this sounds silly, but try making the url end with .csv
I wrote a perl cgi script some time ago that spit out a csv file. When it
ended with .csv, IE seemed to ignore the server's Content-type: text/html
header.
http://finance.yahoo.com/q?s=WCGd=v1
Look, my stock is falling!
Hi,
I just wanted to mention a IMO bad pitfall when using ZCatalog, for
the sake of sparing others some time.
I'm running Zope 2.2.2 with LoginManager with SQL in a subfolder and was getting
the following error when trying to find dtml-documents into ZCatalog:
Error Type: AttributeError
Oliver Bleutgen wrote:
I fiddled around somewhat and discovered that disabling
subtransactions in ZCatalog does help (required for using
ZSQL Methods and ZCatalog in the same transaction).
Yeah, that sux. I think this is a known limitation. I'm not sure.
It is, unfortunately this is only
The problem is that one of your databases doesn't define the commit_sub()
and abort_sub() methods on the DB class it exposes. You don't say which
SQL
database you're using, but this happened to me on a consulting project
with
ZOracleDA. A solution is to add the following methods to the
Hi listies,
something strange is happening with my ZSQL methods. I have a huge query
that works great when testing it in the management-interface - it returns
about 10 records or so.
but when I implement it into a dtml-method getting the parameters via
X-Y-GMX: $flush
REQUEST as usual, I
Jason C. Leach wrote:
hi,
Has anyone implemented there own logging for Virtual Sites?
I was thinking in the site rules an External Method could be called,
passed the Request obj, and from that generate logs for virtual sites.
If anyone has done that, or knows of a better way I'd be
I fear this is anywhere in some howtos,
but I couldn't find it.
How can I get properties of a DTML-Documents
parentfolder as expression in ZopeFind?
At least I couldn't get the "Find" in Zope's webinterface
to show all DTML-Documents whose parent-folder has a certain property.
I guess I'm
Hallo,
I'got a fundamental question:
Why should you switch from the built-in authentication mechanism to a
product like GUF or Login-manager??
You can choose the storage for your userdata yourself,
which may be practical for i.e.
- huge user base and/or you also like to store adresses etc.
Hello, Zopers--
I'm fairly new at this, so I apologize if this is a dumb question.
Anyway, I've been looking for a way to do a bulk upload of XML
documents from a local directory. So I need a method (either
DTML or Python is fine with me) that would build a list of files and
create
Searching a tool to edit DTML on MS-Windows, I read:
http://www.zope.org/Members/cba/HTML_Kit
It says that HTML-Kit can edit files through FTP. I found that it can only
retrieve files, without being able to browse directories, and that it
cannot
save back files with FTP. Absolutely not
Hi,
I'm not sure if this is a strictly zope question, but I hope some people
can give me an idea on how to solve this problem.
I'm creating a form which has amonng it's input tags 2 comboboxes.
Now, the content of one combobox, depends on the selection of the first
combobox.
How can I
hi there,
i work with postgreSQL 7.0.2, ZPyGreSQL and zope 2.2 on suse 7.0 linux
for a identifier field adr_id:serial i want to automatically insert a
new number max(adr_id)+1
how can this be done in an insert into sql statement?
i tried nextval('adr_adr_id_seq') but get an error
Do you
know
any pointer where I can get info on all the headers?
This is the specification for http 1.1
http://www.faqs.org/rfcs/rfc2616.html
esp. Section 14 for headers, you'll also find 302 and friends
explained in this document.
and for more pointers
http://www.w3.org/Protocols/
Does it even *work*? Even a little bit? Because other than repeating the
same process 12 damn times, so far I'm not convinced. Maybe I'll look in
the
source code to see if there's actually anything in the files (other than a
HOWTO.txt, which is empty, which BTW is more annoying than there
Well, not 2.2.4 but 2.2.3, and I had some bugs when
ehm replace 2.2.3 with 2.2.2
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
Btw. can anybody tell me if and how it's possible to relocate
an installed Zope?
Hmm... perhaps I am not understanding what exactly you mean, but a thought
might be to use tar (on a UNIX system at least) to preserve your setup.
Assuming you are using ZServer, Try shutting down Zope with
Oliver,
I haven't been following this thread, but here's how I do it.
It's quite simple.
1.Copy the folder with Zope in.
2.edit z2.py to change all references to the old folder to the new
folder.
3.edit the start script in the same way.
That should be it.
Thanks Phil,
but
Whoa,
seems like my problem was not very interesting...
Anyway, I found a solution and hereby make it public.
To get apache to log usernames, one has to invoke
the apache's authentification machinery. I found
out that one can plug perl-modules into apache for
doing auth and that there's even a
I am still newbie in Zope, so my question may be stupid - sorry.
I have problem with access to method. Example - There are two methods: A
and
B. Method A contains common information, accessible for all user (include
anonymous). Source code in method B updates data for method A and access
Hello Andy, thanks for the advice.
It didn't work. Maybe I'm wrong at any point, so please tell me whether
it worked for you.
I'm aware that this problem has been discussed here before, that it
happens because of Python's object naming, and also that there's a
workaround at least (and
Impo rtError: No module named DynPersist
does the LoginManager dependent from other product of zope?
Do you know which product of zope contians "DynPersist"?
Reread the instructions for installing ZPatterns, they tell you
how to compile Dynpersist.c.
cheers,
oliver
reminded of a previous post in which someone suggested
http://garbage:x@yourSite would also clear the browser's credential.
Much faster and works in IE and Konqueror, but not Navigator or lynx. Very
easy to test, too.
Its just not working for me.
I am going to try LoginManager +
Thanks for the tips:
1)the logout method work with shift+reload in IE (how would clear cached
pages from zope?)
2)the dtml-raise type="Unauthorized" method does not allow me to log
back
in even when I try a redirect to a different page.
I am wondering if something is set incorrectly on my
Some databases convert them to uppercase!
Oracle is a prominent example!
It took me once some ours to locate a bug resulting
from this "feature".
This reminds me of another post I did some time before, but
where nobody replied.
Shouldn't tags for creating
Oliver Bleutgen writes:
Shouldn't tags for creating sql-statements in ZSQL
(like dtml-sqltest) quote the variables by default in order
to prevent unexpected conversions by the database?
Did you check, that standard SQL supports quoted
names?
First, I meant double quotes
Zopatistas,
I need functionality that none of the UserManagers seem to address. I
need to allow a user to elect to log in (and set
AUTHENTICATED_USER) as opposed to have them access a restricted
resource to trigger cookie authentication.
You mean you want to use AUTHENTICATED_USER like a
I think probably Javascript is the 'cleanest' solution in this case,
but depending on the complexity of your UI another non-JS approach is
to make every link target the topmost frome (e.g., target="_top") and
redraw all frames in the frameset on each 'click'. This way you know
that all
Then change your Z SQL Method to look like;
select * from Customers where
foofield=dtml-sqlvar search type=string
dtml-if orderby
ORDER BY dtml-var orderby
/dtml-if
Hmm, I wouldn't do that, you're trusting the client here,
imagine someone going to
I haven't been following this discussion, but it sounds like there's
the potential for SQL operations performed by LoginManager to
interfere with other SQL operations such as logging uploaded files, in
the case where the database system does not support nested (sub-)
transactions. Correct?
From: "Chris Withers" [EMAIL PROTECTED]
We're actually phasing this hack out in favour of a Virtual Host Monster
which
seems like a much cleaner solution...
Sorry, Chris, VHM is irrelevent to this problem. If you want to know the
original remote IP, you have two choices:
1. Use one of
as i said before, writing gpl code subclassing zope is a non-sense. even
the author cannot, imho, redistribute its work with a plain gpl attached
to it. the gpl says that if you link with gpl code *all* the code should
be gpl or gpl-compatible (major os components like clibs, compilers, etc
Aargh,
I sent that first to [EMAIL PROTECTED] ...
Hello message board. This is a message.
SCRIPTmalicious code/SCRIPT
This is the end of my message.
I don't really see your point other than a carelessly implemented app may
expose these kind of
On Sunday 23 September 2001 08:24 pm, Joachim Werner allegedly wrote:
Vulnerability: attacking can get file list and directory
Tested on Win32 platform
Example:
telnet zopeserver 8080
PROPFIND / HTTP/1.0
enter
enter
enter
list files and directory
This tested on my
Hi shane,
Oliver Bleutgen wrote:
From a non-technical, PR-wise point of view let me add that
this type of vulnerability easily gets zope mentioned on lists
like bugtraq. The perception is that these thing really are
vulnerabilities.
You're right, a quick search on google for path
It is possible, as far as i know, to use the unix command file -bi
filename and parse the returned result. It works very fine, but,
unfortunatedly ;^)) just on Unix/Linux/*nix. Have read this on the [Zope]
list and tested myself.
This is not quite correct,
http://sources.redhat.com/cygwin/
So there I was in this discussion about Zope versioning (again) and there
were two features requested that seemed perfectly reasonable at the time,
- to have a list of all the objects changed by a version
Sorry if this is obvious, but at least neither ZopeFind nor
locked_in_version() seem
JanStiller T-Online wrote:
Hi,
Is it possible to marry the RAMCacheManager and gzip?
I'm just working on a little shop and - for speed's sake - do 'ram-cache'
the article-listings and push all the Zope-Content through mod_gzip. With
this combination, I'm getting it 3x faster in Zope and
Chris Withers wrote:
Martijn Faassen wrote:
Anyway, just a module that I can import from Python that exposes the
functionality would already be worth a lot having in the core;
That would be my preference... but the question is should it be core Zope or
core Python. I mean, the type of
Hi reposting to zope-dev because the zope-list didn't yield
any answer (although it should belong there, I think).
I am unsure how to achieve the following in a product:
I have a folder with templates which shall be used to render articles.
This folder will be the central repository of
Lennart Regebro wrote:
The list of permissions is getting quite long. It's the basic permissions of
Zope, plus the ones for our CM system. And we haven't even integrated CMF
with it (which we may or may not do in the future).
To make things easier to find we have names all our permissions
Thanks for the fast reply Casey.
Casey Duncan wrote:
On Thursday 27 September 2001 12:48 pm, Oliver Bleutgen allegedly wrote:
Hi,
I'm resending this to zope-dev because on zope
nobody answered, it would be very nice if someone
could step up with a small hint.
Can somenone briefly
Very niceinteresting thread ...
Stefano Mazzocchi wrote:
Craeg K. Strong wrote:
- Because of acquisition, you can add behavior to objects without
changing their class definitions.
Can you please elaborate more on this?
I'm sure Craeg can and will, but there's IMO a very nice explanation
Hi all,
i have a little problem with my production server.
The memory usage of the zope processes running on this server are
growing up
100K a day upto 1MB a day.
How can i track down the problem.
[snip]
Chris McDonough wrote:
Finding memory leaks is an exercise in binary search.
Toby Dickenson wrote:
On Tue, 12 Mar 2002 18:38:16 +0100, Oliver Bleutgen [EMAIL PROTECTED]
wrote:
Acquisition.ImplicitAcquirerWrapper: 42442
That class is used to glue together acquisition content chains. Being
top of the list indicates that you have been leaking an acquisition
One more question then I'll shut up ;-).
Toby Dickenson wrote:
Is there a description somewhere what the basic causes of such leakages
are? I.e. only bugs in python c-code/zope c-code?
No, its possible for a bug in through-the-web edited dtml to cause
this.
Waah, this is the first time
Adam Manock wrote:
Yes. The best solution would be for the ZEO protocol to support auth and
crypto natively...
The next best solution (while you wait) is to use CIPE ;-)
As far as I understand it, even regular TCP port forwarding is TCP over
TCP and suffers from the unreliable carrier
The issue of client side trojan recently came to my mind again.
Looking at http://www.zope.org//Members/jim/ZopeSecurity/ClientSideTrojan
I found nothing new since Oct. 2001, so I thought I bring up the issue
again, maybe it's something which could be taken care of for zope = 2.6.
I wrote
Lennart Regebro wrote:
From: Oliver Bleutgen [EMAIL PROTECTED]
I think zope's management methods (the potentially destructive ones)
should not accept REQUESTs with REQUEST_METHOD GET.
Do you have any proposal for how to go about doing this?
Well, I don't see how one could do
Jim Washington wrote:
2. If we want to get fancy about allowing authentication using that ip
address like naked ZServers can do,
In lib/python/AccessControl/User.py, around line 1116,
change
if request.has_key('REMOTE_ADDR'):
addr=request['REMOTE_ADDR']
to
if
Lennart Regebro wrote:
From: Oliver Bleutgen [EMAIL PROTECTED]
I was thinking more of something like adding the checks individually to
each method in stock zope for which it is appropriate.
Brian is of course right in his other mail by stating that this might
and will break custom products
First, Toby, thanks for that proposal, it's indeed far more elegant than
the mess I had in mind.
Casey Duncan wrote:
Toby Dickenson wrote:
[snip]
4. Change dtml to not allow dtml-var someNonIdempotentMethod,
although it should still allow dtml-var someNonIdempotentMethod()
Ahhh!
Casey Duncan wrote:
[SNIP]
Also, are we talking about only fixing the action on GET for the ZMI
or for all Zope apps? If the answer is Just the ZMI then we are
talking about doing something that has not been done before: Making the
ZMI different from all other Zope apps. If the answer is
Florent Guillaume wrote:
Oliver Bleutgen [EMAIL PROTECTED] wrote:
The issue of client side trojan recently came to my mind again.
[..]
I think zope's management methods (the potentially destructive ones)
should not accept REQUESTs with REQUEST_METHOD GET.
I like the idea of trying
Jeffrey P Shell wrote:
I have to now admit to not having seen the proposal, I've just been
following along here and struggling to capture the meaning of idempotent
as it applies to Zope security, but I *think* I'm starting to grok it.
Since a search for idempotent on zope.org yields no
Jason Spisak wrote:
You might remember me, I've been a big Zope fan since ZTables,
and have recently been asked Why Zope?. The project is
commited to PostgreSQL and leaning toward PHP. Here's the
project requirements for a softwre company:
Hardware Compatability List
Software
Wei He wrote:
On Mon, 17 Jun 2002, Dieter Maurer wrote:
R. David Murray writes:
...
Well, there's two aspects to this. The first one is the quesiton of
*why* the last modified header is currently that of the outermost
page template. That's a [EMAIL PROTECTED] question. The second
Toby Dickenson wrote:
Rendering may produce side effects. But HEAD requests
are required by HTTP not to have side effects.
RFC 2616 section 9.4 states that HEAD is identical to GET in this respect,
and both should have no side effects.
On Tuesday 18 Jun 2002 10:26 am, Wei He
R. David Murray wrote:
On Tue, 18 Jun 2002, Oliver Bleutgen wrote:
Toby Dickenson wrote:
Rendering may produce side effects. But HEAD requests
are required by HTTP not to have side effects.
RFC 2616 section 9.4 states that HEAD is identical to GET in this respect,
and both should have
Tres Seaver wrote:
Martijn did add a knob to turn the feature off, via a new environment
variable. With a security vulnerability, we have to come up with some
kind of balance between the need to propagate the fix as quickly as
possible and the need (as you point out) not to disrupt
Chris Withers wrote:
I know I'm late in on this thread, but I thought I'd throw in my views.
This is very nice, it seemed like nobody was interested in that.
I'd like to see the REQUEST be flat plain aborted when someone hits the
stop button or the connection dies.
Yes, that would be the
Steve Alexander wrote:
Oliver Bleutgen wrote:
Although Zope has a response stream method of sending information back
to the client, most things in Zope don't use it.
Instead, the response information is aggregated, converted into a
string, and then sent back all at once
Toby Dickenson wrote:
On Wed, 2002-08-28 at 07:49, Chris Withers wrote:
I'd like to see the REQUEST be flat plain aborted when someone hits the
stop button or the connection dies.
Thats probably impossible if there is an HTTP proxy between your browser and
zope.
Why?
It seems logical
Christopher N. Deckard wrote:
Oh, and back on the original topic, does anyone know for sure if
the browsers actually send something to the server when stop is
pressed?
Yes, it sends a RST packet. It ends the tcp-connection.
That's why I think throwing an exception when something tries to
R. David Murray wrote:
On Fri, 30 Aug 2002 [EMAIL PROTECTED] wrote:
Consider a tab for methods... which allows to parse them and produces
a sortable list of links to the other referenced methods...
Good luck grin. You might manage a Quick and Dirty implementation,
but to guarantee
Reposting to zope-dev because no answers on the zope list.
Hi all, I have some questions.
Say I have a external method/product method return_vars which I call
from a form:
def return_vars(self, var=None, **kw):
return var: %s, kw: %s % (var,kw)
Is it correct that any passed form variable
Toby Dickenson wrote:
On Wednesday 02 Oct 2002 9:31 am, Oliver Bleutgen wrote:
i.e. that ZPublisher will _not_ marshall the other variables into the
method call?
Would you really want all of them? All those that come from query string? http
headers? cookies? environment variables?
Only
Ross J. Reedstrom wrote:
It what world do you live, and can I move there? Every large open source
project I've particpated in or kept track of has had this problem - it's
_really hard_ to turn down cool new patches just because your supposed to
be in feature freeze, trying to get a stable
Shane Hathaway wrote:
On the filesystem, the problem seems much more difficult, since there
are no transactions. You'd like the kernel to send Zope a message
anytime someone modifies a file in a certain hierarchy, but that would
require kernel hacking.
FWIW, since I had the same problem
Shane Hathaway wrote:
Oliver Bleutgen wrote:
Shane Hathaway wrote:
On the filesystem, the problem seems much more difficult, since there
are no transactions. You'd like the kernel to send Zope a message
anytime someone modifies a file in a certain hierarchy, but that
would require kernel
Jamie Heilman wrote:
Well its true you can't prevent users from compromising their
credentials, but you can prevent users from coming in the wrong door,
as it were. I'm not clear on which one you really hope to accomplish,
though from your proposed modifications it looks like the latter.
Dieter Maurer wrote:
You might use a SiteAccess access rule.
Dieter, thanks for the suggestion. But I don't see how SiteAccess could
help me here, maybe I'm missing something.
Basically, what I want to do is to prevent zope from ever sending a
unauthorized response to a clear text http
Andy McKay wrote:
3. I've found at least two companies that run many, many zope servers on
remote boxes all over the place and would like one ui to see the status
of them all, I'm trying to see if i can get some $ out of them for the
development :)
If it's about monitoring, let me just
Jamie Heilman wrote:
Leonardo Rochael Almeida wrote:
RewriteRule ^(.*)$ http://127.0.0.1:8080/VirtualHostBase/http/%{HTTP_HOST}:%{SERVER_PORT}/some/folder/VirtualHostRoot$1 [P,L]
This way you don't have to worry about what hostname the user uses to
access their site.
[security considerations
Paul Winkler wrote:
more about our scenario:
* We must anticipate users at hundreds of locations
* there might be 10 or so users at each location
* permissions can be grouped pretty well into tasks, but are
specific to a location - permission to do a task at one
location must not mean
Paul Winkler wrote:
On Sat, Feb 22, 2003 at 02:24:10PM +0100, Oliver Bleutgen wrote:
With locations, do you mean physical locations of the clients (i.e.
IP-adresses), or the locations of objects inside zope (i.e.
/department1, /department2 etc.)?
Both.
Let's call them sites instead
Paul Winkler wrote:
On Mon, Feb 24, 2003 at 12:41:01PM +0100, Oliver Bleutgen wrote:
Since your application might not be suited for that scheme, it might be
worth throwing out roles altogether. How about creating a role for each
user (i.e. user user_id get's just the role user_id, instead
Anthony Baxter wrote:
Oliver Bleutgen wrote
As you and Guido are talking about the ZMI (which means, AFAIK, the
managament interface), let me just say that as far as I understand it,
deprecating/marking-as-evil and even removing OFSP/Version.py is not
what I would like to see happen (not only
Ok, I still have the impression that not enough people are aware of the
full implications of the version functionality as it is implemented in
zope. So let me summarize.
versioning-as-implemented-in-zope consists of two parts:
First, there's the database backend part (which I know nothing
Casey Duncan wrote:
One man's opinion:
- Version support (at the application level) should be optional in 2.7. You
should be able to turn it off (maybe through ZConfig). The default should
probably be off, since I think more people avoid them than use them.
I would suggest these approaches:
Aaah, big thanks for chiming in. *sigh of relief*.
Shane Hathaway wrote:
Casey Duncan wrote:
The security implications do not seem dire enough to me to warrent
trying to squeeze this into 2.6.x. If you do not use versions then
none of the implications apply. Perhaps it might be possible to do
Dieter Maurer wrote:
Oliver Bleutgen wrote at 2003-6-6 11:46 +0200:
3. And (minor problem, but whatever), since zope relies completely on
the browser to send cookies only the right time (i.e. that the path set
for the cookie must match a prefix of the request-URI), this might
also
that versions
basically do not work as advertised, leading in various cases to zodb
corruption or work that can't be saved. There are other security issues
that Oliver Bleutgen raised privately which I won't state here.
Comments? Could we get at least some warnings in the ZMI before
2.6.2 final?
As I see
[EMAIL PROTECTED] wrote:
If I remember correctly, though, there was still a lot in question about
legitimate use cases. The web-services cluster-safety use-case I sketched
out here (http://mail.zope.org/pipermail/zope3-dev/2002-October/003112.html)
is still (perhaps) a valid case, but ONLY in a
Chris Withers wrote:
Shane Hathaway wrote:
My opinion on this is a little different. It's quite easy for anyone
to make mischief on any Zope server that lets people make even minor
changes to the site, such as giving feedback, posting a discussion
item, etc.
On the weekend I had the idea
I've a problem with a product I'm writing and the way manage_workspace
works.
There's this code in App/Management.py:
def manage_workspace(self, REQUEST):
Dispatch to first interface in manage_options
options=self.filtered_manage_options(REQUEST)
try:
Shane Hathaway wrote:
Brian Lloyd wrote:
FYI - we plan for this to be fixed in 2.6.2, preferably by fixing
the version machinery to require the join / leave versions
permission (which is assigned only to managers by default.
It will be interesting to find out how this can be accomplished. To
Dieter Maurer wrote:
Oliver Bleutgen wrote at 2003-6-10 16:20 +0200:
...
And you have to take acquisition into account
folder1
some_object
folder2
version2
some_object shouldn't be lockable into version2.
Where did you ever read that the effect of versions
were in any
Shane Hathaway wrote:
Jamie Heilman wrote:
Whats the status of versions for 2.6.2 and 2.7? Have there been any
decisions reached? I saw Jim's code get checked in but it won't
stop the DoS I posted.
Say it a little louder. Here is what I think you're saying:
- Anonymous users can still open
Anitha George wrote:
Hii
Could any of you please tell me what is the request method used in
Zope to go back to the page from where I have come.
Plss do send a reply soonnn...
Thanks Anitha
Anitha, I think questions of this nature are better sent to
[EMAIL PROTECTED] (zope-dev mostly means
1 - 100 of 102 matches
Mail list logo
