Vladimir Petrovic wrote at 2005-10-6 17:44 +0300: > ... restricting Web Publishing in specific folders ... >I know this can be done by restricting View/Access Contents information >privileges for folders/scripts to the specific role and then giving DTML >methods proxy role. But, is there any other easier methods ?
There may be several alternative options: * an "AccessRule" Two potential problems: - they can be deactivated by the incomming request (but you can comment out the deactivating code) - authentication has not yet taken place; the user identity is not yet known * a "Post-Authentication-Hook" I think (but I am not sure) that Zope 2.8 has implemented them. If not, my Zope page contains a patch (for older Zope versions, will not work out of the box for Zope 2.8) for a "Post-Authentication-Hook" implementation. <http://www.dieter.handshake.de/pyprojects/zope> -- Dieter _______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )