[Zope] Nested PersistentMappings and security
Jens Vagelpohl
jens at dataflake.org
Mon Mar 7 08:41:09 EST 2005
On Mar 7, 2005, at 14:31, Pascal Peregrina wrote:
> I am missing something... (sorry) :
> to create :
> tree={'a':{'b':1,'c':2},'d':4}
>
> How would I do using OOBTrees ?
> Is this right ?
> tree2=OOBTree()
> tree2.update({'b':1,'c':2})
> tree=OOBTree()
> tree.update({'a':tree2,'d':4})
>
> The problem is that when in a ZPT I access tree (being an attribute of
> some
> of my objects), I get Security problems to access tree2.
I would *not* use them directly inside ZPT. I would use them from a
"trusted" environment such as Python-based Zope products or external
methods.
jens
More information about the Zope
mailing list