Okay,
From the manage_access screen in the ZMI I can click on a role to view the permissions assigned to that role. It was my assumption that this would show me the same information as if I had looked at the column of checkboxes below the selected Role.
This is the case except for the Manager role. After some investigation I found that the manage_roleForm makes several calls which eventually end up calling the Permission.getRoles method. This method checks the object in question for a __roles__ attribute. If this attribute does not exist 'Manager' is returned. This causes several options to be selected on the manage_roleForm for Manager since quite a few products do not have the __roles__ attribute. Such products include Temporary Folders, parts of CMF, and ZWiki. Now, my question is if this is a bug within RoleManager or a bug within the individual products? Thanks, -Brian Brinegar ECN Web System Developer Purdue University West Lafayette, IN
Brian R Brinegar wrote:
Now, my question is if this is a bug within RoleManager or a bug within the individual products?
I may be wrong, but I think this might be a reflection on the way the Zope security system works... cheers, Chris
participants (2)
-
Brian R Brinegar -
Chris Withers