[Zope] Interesting RE problem
Chris McDonough
chrism@zope.com
Thu, 11 Jul 2002 10:25:59 -0400
I'm not sure about the difference between using test and calling the
method through the web, but this is an example of why the re module
hasn't been considered for inclusion in the default TTW-importable
module list. Someone will need to wrap the re module to return
things that can be protected with security declarations if it's ever
to be included as a TTW-accessible module.
----- Original Message -----
From: "Jason Bush" <jason@nol.org>
To: <zope@zope.org>
Sent: Thursday, July 11, 2002 9:44 AM
Subject: [Zope] Interesting RE problem
> Whether or not allowing the re module is safe, I added it
>
> to our test server. I notice an interesting 'bug?' however
>
> (more likely user error).
>
> I created a simple PythonScript object inside of a TestProduct,
>
> where the PythonScript is the view of the TestProduct(inherits
>
> from DTMLMethod). When I create an instance of my Test object
>
> and save it, then click on the View tab, I get an:
>
> > Unauthorized to access compile in this context error
(re.compile(str))
>
> HOWEVER, if I open a new browser window and type in the URL of the
>
> object with no auth (normal web user), it renders fine, without
error.
>
> Any enlightenment?
>
> --
> Jason Bush --- jason@nol.org
> Nebraska Online http://www.nol.org
>
>
>
>
>
> _______________________________________________
> Zope maillist - Zope@zope.org
> http://lists.zope.org/mailman/listinfo/zope
> ** No cross posts or HTML encoding! **
> (Related lists -
> http://lists.zope.org/mailman/listinfo/zope-announce
> http://lists.zope.org/mailman/listinfo/zope-dev )
>