Garito wrote at 2007-7-9 02:24 +0200:
> ...
>To Dieter: I have a folder with some objects. This objects has 2 subgroups:
>availables for everyone and availables only for a role
>I would like to do folder.objectValues() and get a list of objects filtereds
>but I don't have any idea if I could do that

If "objectValues" means the standard Zope "ObjectManager" method,
then it does not do filtering based on permissions.

>What I can do (now if I solve the logon process will be finished) is have
>the whole list and filter in the read process: if user has access keep in
>the list, if not delete from it
>I try to do that with normal zope security machinery but with no success and
>I would like to finish as soon as possible

Even accessing an object for which the current user lacks the
so called "object permission" will result in an "Unauthorized" exception.

You may be able to allow import of "Unauthorized" and then use
"try: ... except Unauthorized: ...".

Zope maillist  -
**   No cross posts or HTML encoding!  **
(Related lists - )

Reply via email to