[Product-Developers] Attribute: acl_users

Andreas Jung lists at zopyx.com
Wed Mar 17 10:33:10 UTC 2010


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Suresh V. wrote:
> Possible bug in Plone 3.3.4:
> 
> If you had a folderish object in private state which had an 'acl_users'
> inside it and an anonymous user attempts to browse to the object you end
> up with "BadRequest" instead of "Unauthorized" from globalize() in
> ploneview.py which bubbles up from getToolByName() in
> CMFCore/PortalFolder.py.
> 

Why should a folderish object contain its own acl_users folder beside
the one of Plone. This is bad-practice.

- -aj
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkugr+YACgkQCJIWIbr9KYxdIgCcDhT8BtviS48VAmYLEwb5sH9v
gSMAn1moBzWAnk/Xuja8UxXPDMNMuPQn
=65jx
-----END PGP SIGNATURE-----
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lists.vcf
Type: text/x-vcard
Size: 316 bytes
Desc: not available
URL: <http://lists.plone.org/pipermail/plone-product-developers/attachments/20100317/4fe6a55d/attachment.vcf>


More information about the Product-Developers mailing list