Stefan Doerig wrote at 2004-3-25 11:10 +0100:
>Thanks for the good hint, I could reproduce it by accessing my template
>and if I revoke the permission (on root level) View from the Role
>'Anonymous' and grant it to 'Authenticated' then it leaks the objects
>When I granted 'View' to 'Anonymous' again leaking stopped. Am I using
>this facility wrongly?
I tried to reproduce it, but have not succeeded.
Do you provide authentication information with your requests?
I did not (such that each request resulted in a 401 response).
Zope-Dev maillist - [EMAIL PROTECTED]
** No cross posts or HTML encoding! **
(Related lists -