[Zope] CMF security error in DCWorkflow that doesn't make sense
Peter Bengtsson
peter at fry-it.com
Tue Jul 1 07:15:38 EDT 2008
First of all, I'm not sure if this is the right mailing list but
hopefully the DCWorkflow people read this list too.
I've got a strange problem.
On my laptop it works (zope 2.7.8) on the live server it works (zope
2.7.3) but on the test server (2.7.8) it doesn't!!! And it's the same
Data.fs and Products as the live server. It throws an Unauthorized
error upon executing a python script as part of a workflow transition.
The Error:
The owner of the executing script is defined outside the context of
the object being accessed. The script has proxy roles, but they do not
apply in this context.. Access to 'workflow' of
(Products.DCWorkflow.Expression.StateChangeInfo instance at 0xddffb48)
denied. Access requires Manage_portal_Permission, granted to the
following roles: ['Manager']. The executing script is (PythonScript at
/intranet/portal_workflow/intranet_workflow/scripts/wf_script_despatcher),
owned by oliver.
The Python script has Proxy role "Manager" so how can it be limited?
I didn't write this CMF based application and I want to get on top of
it so it doesn't happen again.
Regards, Peter
--
Peter Bengtsson,
work www.fry-it.com
home www.peterbe.com
hobby www.issuetrackerproduct.com
More information about the Zope
mailing list