[Zope] LDAPUSerFolder permission problem
Jens Vagelpohl
jens at dataflake.org
Tue Jul 12 09:57:43 EDT 2005
On 12 Jul 2005, at 14:03, Nicholas Watmough wrote:
> I'm trying to access the getProperty() method of the LDAPUser class
> in a Python script, in order to access the Active Directory email
> address of the user.
>
> There is no problem with this, if I use the method on the current
> active user. However, it doesn't work when I attempt to use the
> method on another property.
>
> The output of VerboseSecurity is:
>
> *Error Type: Unauthorized*
> *Error Value: Your user account does not have the required
> permission. Access to 'getProperty' of nwuser denied. Your user
> account, abuser, exists at /acl_users. Access requires one of the
> following roles: ['Manager']. Your roles in this context are
> ['Anonymous', 'Authenticated', 'User'].*
>
> It appears that the currently authenticated used has the 'View'
> permission (required to use getProperty) on itself, but not for
> other users. I'm not sure how to change this.
I'm assuming that the "other" user is not wrapped. How are you
getting that other user object?
jens
More information about the Zope
mailing list