[Zope] Python Script Security
bart.jansen at esac.climbing.nl
Fri Nov 18 19:50:44 UTC 2011
I am not aware of any method to stop a script from being directly
called. You can however check this in the script itself.
You could try something like this (untested):
> if context.REQUEST.get("PUBLISHED") == script:
> #raise an error here
This checks if the currently published object equals the current script.
On 11/18/11 19:05, Richard Harley wrote:
> Hello all
> I have a dtml method which builds a page from various different python
> How can I stop the python scripts from being called and passed variables
> independently of the main dtml method? I've tried some research on proxy
> roles but couldn't pin it down. ZSQL methods are not callable
> independently and I would like Python Scripts to behave the same.
> Zope maillist - Zope at zope.org
> ** No cross posts or HTML encoding! **
> (Related lists -
> https://mail.zope.org/mailman/listinfo/zope-dev )
More information about the Zope