[Grok-dev] grokcore.component 1.0 released!

David Pratt fairwinds at eastlink.ca
Thu May 1 13:42:47 EDT 2008


Lennart Regebro wrote:
> On Thu, May 1, 2008 at 12:49 PM, David Pratt <fairwinds at eastlink.ca> wrote:
>> Hi Lennart, its a preference for explicit over implicit but I think
>> grokcore.component can give me the mix I have been looking for and can be
>> satisfied with. Grok removes security proxies. This is a significant factor
>> in my choice of zope flavor.

Hi Lennart. I don't want my comment to infer that Grok is insecure since 
I realize that it has mechanisms for authorizing views, authenticating, 
etc. Despite this, I prefer plain z3 since it does not remove security 
proxies by default, that's all. For folks that use Grok exclusively, the 
removal of security proxies is most likely an advantage.

> A lot of things removes security proxies. :) Grok is not insecure. Or
> at least, it shouldn't be, so if it is, it's a bug. :)
> 
>> ZCML is and integral part of zope. I can get used to not writing some parts
>> of it, but I always will want to know (and see) what is being done for me.
> 
> Well, Grok does have defaultsm while ZCML doesn't (or at least not in
> the same way), I guess this is what you mean.
> 
>> Happy to know this will be possible through introspection. This is part of
>> intimately understanding your app which I do not want to become dissociated
>> from.
> 
> Yup.
> 


More information about the Grok-dev mailing list