[zope2-tracker] [Bug 511294] [NEW] UnauthorizedBinding Context is not being handled at all by MultiAdapters
Patrick Gerken
do3ccqrv at googlemail.com
Fri Jan 22 13:11:29 EST 2010
Public bug reported:
In svn commit 24375,
http://svn.zope.org/Zope/trunk/lib/python/Shared/DC/Scripts/Bindings.py?rev=24375&r1=24352&r2=24375
happens a workaround for better Security handling.
Instead of throwing an Unauthorized Exception, it returns a Context that
will most probably throw an Unauthorized Exception later, while trying
to access a member.
But Nowadays, we can try to get a view with MultiAdapters, and these
throw an KeyError, that is then not handled as a Unauthorized Exception.
I wonder, if this workaround for Workflows can be removed. I mean its, 6
years now.
The issue materializes itself in Plone, the bug report there is this one:
http://dev.plone.org/plone/ticket/9394
** Affects: zope2
Importance: Undecided
Status: New
--
UnauthorizedBinding Context is not being handled at all by MultiAdapters
https://bugs.launchpad.net/bugs/511294
You received this bug notification because you are a member of Zope 2
Developers, which is subscribed to Zope 2.
More information about the zope2-tracker
mailing list