Does Zope security provide a way of restricting what objects are listed to an authenticated user inside the Zope 'manage' interface? I'm getting my head all twisted up over this security / proxy roles /local roles lark. Thanks, seb