22 Jun
2009
22 Jun
'09
9:36 a.m.
On Jun 21, 2009, at 9:40 PM, Stephan Richter wrote:
On Sunday 21 June 2009, Jim Fulton wrote:
Thoughts?
+1. Sounds really good!
BTW, I would love to hear about a practical example for overriding proxy() other than turning off security altogether.
2 examples: - Use a Python-based proxy that's good enough for supporting access control in trusted code. (It wouldn't protect against devious untrusted code, but most applications don't really need to run untrusted code.) - Use a better system for managing checkers. Probably the most important feature is disabling proxy-based protection for applications that don't need an access control model or that use a non-proxy-based approach. Jim -- Jim Fulton Zope Corporation