On Thu, May 29, 2008 at 1:45 AM, Mark Ramm <[EMAIL PROTECTED]> wrote: > >> I don't know how you intend to implement the controller level security >> but I'd like to have some kind of SecureResource ala tg1 that would be >> an option and could be totally swapped out of a project that does not >> need identity. > > My thoughts were described here: > > http://tinyurl.com/5v7o3z > > Basically I think dispatch should just look for a callable on the > controller that returns True if permission should be granted. >
so a callable named "grant_access" if found on the controller would be called and if it returned True then the access would be granted... fine. The only aspect I'd like to see happen is the "inheritance": if I mount a resource B under a SecureResource A that requires a specific permission I assume that the same permission will be asked for accessing the resource B. Is that something you intend to have/implement ? Florent. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears Trunk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears-trunk?hl=en -~----------~----~----~----~------~----~------~--~---
