A recent change breaks access sometimes
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
zope.security (Ubuntu) |
Fix Released
|
Critical
|
Gediminas Paulauskas |
Bug Description
We have a problem with SchoolTool and zope.security 3.8.2, that we get ForbiddedAttribute in some pages.
As Douglas Cerna has investigated,
"I think the problem is that the zope.location.
-------
--- src/zope/
+++ src/zope/
@@ -69,14 +69,3 @@
# being used for isinstance
return builtin_
-
-
-# zope.location was made independent of security. To work together with
-# security, we re-inject the DecoratedSecuri
-# location proxy from here.
-# This is the only sane place we found for doing it: it kicks in as soon
-# as someone starts using security proxies.
-import zope.location.
-from zope.security.
-zope.location.
- DecoratedSecuri
-------
If I put the removed code back in zope.security.proxy the view works. If I just add "import zope.security.
Related branches
Changed in zope.security (Ubuntu): | |
status: | New → In Progress |
importance: | Undecided → Critical |
assignee: | nobody → Gediminas Paulauskas (menesis) |
summary: |
- Breaks some security checkers + A recent change breaks access sometimes |
This bug was fixed in the package zope.security - 3.8.2.is. 3.8.0-0ubuntu1
--------------- is.3.8. 0-0ubuntu1) oneiric; urgency=low
zope.security (3.8.2.
* Go back to 3.8.0 because a change in 3.8.1 breaks schooltool. (LP: #859090)
-- Gediminas Paulauskas <email address hidden> Sun, 25 Sep 2011 21:30:07 +0300