[Zope] Per-user authorization to folder using SiteAccess rules
Dieter Maurer
dieter at handshake.de
Sat May 8 14:12:24 EDT 2004
Andy Altepeter wrote at 2004-5-7 15:56 -0500:
> ...
>> Protect your documents by a permission granted only to priviledge roles.
>> This will prevent normal users to access them directly.
>
>Is changing the 'View' permission on the container to: (Manager,<local
>priv role>) sufficient?
Probably.
However, you might also want to restrict "Access contents information".
Usually, "Access contents information" is used to protect
access to the object itself and some of its elementary methods
such as "getId", "title", ...
--
Dieter
More information about the Zope
mailing list