No idea what this method should tell use?! Your code uses "news.feed.href"...nothing's like that can be found here in the code.
We can not guess what this snippet is doing and where and why.


--On 15. Juni 2007 12:02:48 -0400 Tom Von Lahndorff <[EMAIL PROTECTED]> wrote:

shouldnt this prevent that?

def dictify(p):
     Since the FeedParser returns a dictionary-like class instance,
rather than
     a real dictionary, We must iterate through all nested instances and
     them to dicts to avoid security problems within Zope. I have no idea
     feedparser doesn't just use real nested dicts in the first place.
     newdict = {}
     if type(p) in [types.DictionaryType, types.InstanceType]:
         d = p # for clarity
         for k,v in d.items():
             newdict[k] = dictify(v)
     elif type(p) == types.ListType:
         l = p # for clarity
         for ss,v in zip(xrange(len(l)), l):
             l[ss] = dictify(v)
         return l
     else: return p
     return newdict

On Jun 15, 2007, at 11:49 AM, Andreas Jung wrote:

--On 15. Juni 2007 11:45:49 -0400 Tom Von Lahndorff

<dtml-let news="newsfeed(feedurl='

<dtml-var "news.feed.href">



Site Error

An error was encountered while publishing this resource.

Error Type: Unauthorized
Error Value: You are not allowed to access 'feed' in this context

Likely because the module has no security assertions. All your
stuff runs
under the conditions of Restricted Python. The standard Zope
security applies.


ZOPYX Ltd. & Co. KG - Charlottenstr. 37/1 - 72070 Tübingen - Germany
Web: - Email: [EMAIL PROTECTED] - Phone +49 - 7071 - 793376
Registergericht: Amtsgericht Stuttgart, Handelsregister A 381535
Geschäftsführer/Gesellschafter: ZOPYX Limited, Birmingham, UK
E-Publishing, Python, Zope & Plone development, Consulting

Attachment: pgpiQY7pxdE3Q.pgp
Description: PGP signature

Zope maillist  -
**   No cross posts or HTML encoding!  **
(Related lists - )

Reply via email to