On Tue, 2005-10-18 at 11:05, Chris Crownhart wrote:
> Good day,
> I am wondering if/how I could control the permissions on an object based 
> on the value of an attribute.  I am using CMF, and thus portal_catalog, 
> and have built a custom content type.  My type has a category field.  I 
> would like to control the view permission of the object dynamically 
> based on the value of category.
> So, as an example, I have multiple users, and multiple values for the 
> category field.  I would like User A to access the object if the 
> category ='financial', and User B access the object if the 
> category='other'.
> Thanks for any ideas.

I assume user A and B have different roles?  Instead of dynamically controlling 
the permission, could you set the permission on the object explicitly when the 
object is edited?


def manage_edit(self, ...):
   if REQUEST.get('category') == 'other':
   elif REQUEST.get('category') == 'financial':

Zope maillist  -  Zope@zope.org
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-dev )

Reply via email to