RE: [Zope] getting a list of users from ACL_USERS
What exactly are "sufficient permissions" ? Thanks, Derek Wilson -----Original Message----- From: Dylan Reinhardt [mailto:zope@dylanreinhardt.com] Sent: Friday, October 10, 2003 11:27 AM To: Derek S. Wilson Cc: Zope user list Subject: Re: [Zope] getting a list of users from ACL_USERS On Fri, 2003-10-10 at 10:58, Derek S. Wilson wrote:
But when I try it using a regular (non-manager/owner) it says:
Error Type: Unauthorized
Error Value: You are not allowed to access getUserNames in this context
When I use the site manager, it works fine...
It seems reasonable, by default, that you wouldn't want to allow just *anyone* to examine your user folder. :-) Since you *want* non-default behavior, give this method a proxy role that has sufficient permissions. Once you've got that, you may want to restrict access to this method, granting use of it only to authenticated users, for example. HTH, Dylan
On Fri, 2003-10-10 at 11:48, Derek S. Wilson wrote:
What exactly are "sufficient permissions" ?
Click on any object and look at the "Security" tab. This screen defines which roles have permission to do various things with the object. IIRC, acl_users acquires most of its permissions from its parent. To examine those permissions, look at the security screen for the parent object. To override those permissions, un-click the "acquire permission settings" box for each permission you want to set manually and change them. Before going too much further into this, I'd be sure to read: http://www.zope.org/Documentation/Books/ZopeBook/2_6Edition/Security.stx HTH, Dylan
participants (2)
-
Derek S. Wilson -
Dylan Reinhardt