15 Nov
2003
15 Nov
'03
11:48 a.m.
Dieter Maurer wrote at 2003-11-14 20:43 +0100:
Jim Fulton wrote at 2003-11-13 15:22 -0500:
... new security policy for NSEC ...
Folklore says that Zope cannot protect attributes of simple types (because they do not provide the method magic that will be lost for NSEC). ... Of course, Zope cannot check a bare value of simple type, but usually it has "container" and/or "parent" and then checking would be easy by looking at related ("__roles__") attributes of the container/parent.
I will see this weekend whether I have been true. If so, the same mechanism could (in principle) be used for methods.
Patch attached. -- Dieter