[Zope-dev] Re: CatalogBrains since Zope2.7.1b1
Casey Duncan
casey at zope.com
Fri Jun 25 09:36:37 EDT 2004
On Thu, 24 Jun 2004 19:04:55 +0200
Dieter Maurer <dieter at handshake.de> wrote:
> Casey Duncan wrote at 2004-6-18 09:58 -0400:
> > ...
> >Security was tightened for getObject recently as part of a general
> >refactor of that code. I am happy to consider whether the security is
> >too tight, in which case it could be backed off a bit.
>
> I think, you should only require access rights to the object itself
> and not to all folders from the root to the object.
>
> It is not uncommon that upper levels are more restricted than
> subhierarchies. This is what Zope's URL traversal
> allows: Only the object identified by URL traversal is
> accessed checked.
>
> That ZCatalog identifies objects by physical path is an implementation
> artifact. It should not make it impossible to access an
> object via the catalog that otherwise can be accessed without
> problem.
>
> > ...
> >For hysterical raisins, REQUEST.traverse() does not behave this way.
> >It instead checks only the final object traversed.
> That's a good behaviour...
Except when it isn't ;^) OTOH it is closer to the behavior of getObject
in 2.7.0. Ironically it used to use restrictedTraverse long ago...
-Casey
More information about the Zope-Dev
mailing list