Michel Pelletier <michel@digicool.com> wrote:

On Thu, 14 Jun 2001, Bocquillon Philippe wrote:

...

In the following piece of Python code for Zope:

__ac_permissions__=( ('View management screens', ('manage_main',)), ('View', ('', 'index_html', 'update', 'show_source','view_image','picture',)), ('Change', ('manage_edit',), ('Manager',)), )

Could you tell me:

1) What does the first "empty" method ('') associated to the View permission mean?

The default view. Synonymous with index_html

This spelling defines the "default permission" for instances of the class: it ends up setting the '__roles__' for the class (and therefore for its instances). This setting is only really important when the object *itself* expects to be published (i.e., it is callable, and defines 'index_html' to be None). If the instance has or acquires an 'index_html', then that method may have its own '__roles__', which will apply, rather than the ones set on the object (the last one found during traversal applies). Check out AccessControl.SecurityInfo.declareObjectProtected(); under the covers, it is doing the exact same thing, but its name makes the intent clearer. Tres. -- =============================================================== Tres Seaver tseaver@digicool.com Digital Creations "Zope Dealers" http://www.zope.org