13 Dec
1999
13 Dec
'99
2:57 p.m.
-----Original Message----- From: Martijn Faassen [mailto:m.faassen@vet.uu.nl] Sent: 13 December 1999 14:37 To: zope@zope.org Subject: Re: [Zope] permissions check without triggering login
Steve Spicklemire wrote:
Could you set the 'proxy' for that method to have a role that can check with impunity?
Interestingly, this works. You'd think that if I set the proxy to manager it wouldn't work as I'd wanted, because this proxy role now has permissions equal to that of manager, so I still couldn't check if Anonymous can view. But apparently this isn't the case, and it does work..
Could somebody explain this behavior?
AUTHENTICATED_USER doesnt have the permission, the role does.