Why doesn't Anonymous have permission to call has_permission on itself? This is counter-intuitive to say the least... []s, |alo +---- -- Hack and Roll ( http://www.hackandroll.org ) News for, uh, whatever it is that we are. http://zope.gf.com.br/lalo mailto:lalo@hackandroll.org pgp key: http://zope.gf.com.br/lalo/pessoal/pgp Brazil of Darkness (RPG) --- http://zope.gf.com.br/BroDar
On Sun, Sep 17, 2000 at 11:22:49PM -0300, Lalo Martins wrote:
Why doesn't Anonymous have permission to call has_permission on itself? This is counter-intuitive to say the least...
Ooops... they have, kind of. The Anonymous user object inherits the permissions from the top-level User Folder (/acl_users). This is kind of weird and should be documented, but is usable. (So, to allow Anonymous to call has_permission on itself you have to enable "Access content information" for Anonymous on /acl_users) []s, |alo +---- -- Hack and Roll ( http://www.hackandroll.org ) News for, uh, whatever it is that we are. http://zope.gf.com.br/lalo mailto:lalo@hackandroll.org pgp key: http://zope.gf.com.br/lalo/pessoal/pgp Brazil of Darkness (RPG) --- http://zope.gf.com.br/BroDar
Lalo Martins wrote:
(So, to allow Anonymous to call has_permission on itself you have to enable "Access content information" for Anonymous on /acl_users)
Hmmm, it might be safer to give Anonymous access to something liek a DTML method which does the work and calls has_permission and give this menthod a proxy role of manager or something. Giving Anonymous the "Access content information" probably opens up more than you intended. cheers, Chris
participants (2)
-
Chris Withers -
Lalo Martins