[Zope] NUXUserGroups Zope security

Sion Morris s.morris@bangor.ac.uk
Mon, 22 Jul 2002 16:32:05 +0100


On Monday, July 22, 2002, at 01:19  pm, Florent Guillaume wrote:

> In article <E9E34A79-9D51-11D6-81FA-000393876536@bangor.ac.uk> you 
> write:
>>>> The script returns the same error when executed by a user with 
>>>> manager
>>>> role and when the script has the manager proxy role.
>>>>
>>>> I'm stumped.
>>>
>>> Can you try to add a
>>>     security.declareObjectProtected(ManageUsers)
>>> just after the
>>>     security = ClassSecurityInfo()
>>> in the BasicGroup class ? (in UserFolderWithGroups.py)
>>>
>>> Tell me if it works for you.
>>
>> It doesn't make a different. I still get the same error.
>>
>> I've also tried adding the declareObjectProtected on the Group class 
>> and
>> that didn't work either.
>>
>> Changing the security declaration for the getUsers method in class 
>> Group
>> to security.declarePublic('getUsers') works as expected though.
>
>
> Can you check the owner in the Owner tab of the script, verify that the
> user still exists, and that he's a Manager.
>

The owner still exists, and is a manager. Also the proxy setting for the 
script is set to manager.

Are you able to use getUsers() to work from a python script? If you can, 
then the problem must be with my set-up. If you cannot use it then there 
must be a problem with the security declarations and the code.

Many thanks,

Sion