On 12 Jul 2005, at 14:03, Nicholas Watmough wrote:

I'm trying to access the getProperty() method of the LDAPUser class in a Python script, in order to access the Active Directory email address of the user.

There is no problem with this, if I use the method on the current active user. However, it doesn't work when I attempt to use the method on another property.

The output of VerboseSecurity is:

*Error Type: Unauthorized*
*Error Value: Your user account does not have the required permission. Access to 'getProperty' of nwuser denied. Your user account, abuser, exists at /acl_users. Access requires one of the following roles: ['Manager']. Your roles in this context are ['Anonymous', 'Authenticated', 'User'].*

It appears that the currently authenticated used has the 'View' permission (required to use getProperty) on itself, but not for other users. I'm not sure how to change this.

I'm assuming that the "other" user is not wrapped. How are you getting that other user object?


Zope maillist  -  Zope@zope.org
**   No cross posts or HTML encoding!  **
(Related lists - http://mail.zope.org/mailman/listinfo/zope-announce
http://mail.zope.org/mailman/listinfo/zope-dev )

Reply via email to