[Zope-CMF] Securing CMF with Page Templates

[Dieter Maurer]

kent writes:
 > I figured out what is triggering the authentication request with
 > Page Templates. You can access some file attributes correctly, but
 > not others. For example, the following works :
 > 
 >   <td><a href="filelink"
 >        tal:attributes="href string:${file/absolute_url}/view"
 >        tal:content="file/Title">file title</a></td>
 > 
 > but most other object attributes, like size, bobobase_modification_time
 > or getContentType trigger the authentication request, even though
 > the user has the appropriate role (even local roles makes no
 > difference here) :
 > 
 >  <td tal:content="file/size">file size</td>
I can access the file size without any problem in a PageTemplate ...


Dieter