Security framework for Zope.
Project description
AccessControl
AccessControl provides a general security framework for use in Zope.
Changelog
For changes before version 3.0, see HISTORY.rst.
5.3.1 (2022-03-29)
- Prevent race condition in guarded_import (see #123)
5.3 (2022-02-25)
- Provide AccessControl.get_safe_globals to facilitate safe use.
- Honor PURE_PYTHON environment variable to enable python implementation during runtime.
- Add support for Python 3.10.
5.2 (2021-07-30)
- Fix Appveyor configuration so tests can run and wheels build.
5.1 (2021-07-30)
NOTE: This release has been yanked from PyPI due to wheel build issues.
- Fix a remote code execution issue by preventing access to string.Formatter from restricted code.
5.0 (2020-10-07)
- Add support for Python 3.9.
- Remove deprecated classes and functions in
(see #32):
- AccessControl/DTML.py
- AccessControl/Owned.py
- AccessControl/Role.py
- AccessControl/Permissions.py
- Add deprecation warnings for BBB imports in:
- AccessControl/AuthEncoding.py
- AccessControl/Owned.py
- AccessControl/Role.py
- AccessControl/User.py
- Although this version might run on Zope 4, it is no longer supported because of the dropped deprecation warnings.
4.2 (2020-04-20)
4.1 (2019-09-02)
- Python 3: Allow iteration over the result of dict.{keys,values,items} (#89).
4.0 (2019-05-08)
Changes since 3.0.12:
- Add support for Python 3.5, 3.6, 3.7 and 3.8.
- Restore simple access to bytes methods in Python 3 (#83)
- Clarify deprecation warnings for several BBB shims. (#32)
- Add a test to prove that a user folder flag cannot be acquired elsewhere. (#7)
- Tighten basic auth string handling in BasicUserFolder.identify (#56)
- Prevent the Zope 4 ZMI from showing an add dialog for the user folder. (#82)
- Fix order of roles returned by AccessControl.rolemanager.RoleManager.userdefined_roles.
- Add configuration for zodbupdate.
- Add TaintedBytes besides TaintedString in AccessControl.tainted. (#57)
- Security fix: In str.format, check the security for attributes that are accessed. (Ported from 2.13).
- Port override_container context manager here from 2.13.
- Add AppVeyor configuration to automate building Windows eggs.
- Fix for compilers that only support C89 syntax (e.g. on Windows).
- Sanitize and test RoleManager role handling.
- Depend on RestrictedPython >= 4.0.
- #16: Fixed permission handling by avoiding column and row numbers as identifiers for permissions and roles.
- Extract .AuthEncoding to its own package for reuse.
- Declare missing dependency on BTrees.
- Drop Record dependency, which now does its own security declaration.
- Remove leftovers from history support dropped in Zope.
- Remove duplicate guard against * imports. (#60)
3.0.12 (2015-12-21)
- Avoid acquiring access from module wrapped by SecurityInfo._ModuleSecurityInfo. See: https://github.com/zopefoundation/AccessControl/issues/12
3.0.11 (2014-11-02)
- Harden test fix for machines that do not define localhost.
3.0.10 (2014-11-02)
- Test fix for machines that do not define localhost.
3.0.9 (2014-08-08)
- GitHub #6: Do not pass SecurityInfo instance itself to declarePublic/declarePrivate when using the public/private decorator. This fixes Conflicting security declarations warnings on Zope startup.
- LP #1248529: Leave existing security manager in place inside RoleManager.manage_getUserRolesAndPermissions.
3.0.8 (2013-07-16)
- LP #1169923: ensure initialization of shared ImplPython state (used by ImplC) when using the “C” security policy. Thanks to Arnaud Fontaine for the patch.
3.0.7 (2013-05-14)
- Remove long-deprecated ‘Shared’ roles support (pre-dates Zope, never used by Zope itself)
- Prevent infinite loop when looking up local roles in an acquisition chain with cycles.
3.0.6 (2012-10-31)
- LP #1071067: Use a stronger random number generator and a constant time comparison function.
3.0.5 (2012-10-21)
- LP #966101: Recognize special zope2.Private permission in ZCML role directive.
3.0.4 (2012-09-09)
- LP #1047318: Tighten import restrictions for restricted code.
3.0.3 (2012-08-23)
- Fix a bug in ZopeSecurityPolicy.py. Global variable rolesForPermissionOn could be overridden if __role__ had custom rolesForPermissionOn.
3.0.2 (2012-06-22)
- Add Anonymous as a default role for Public permission.
3.0.1 (2012-05-24)
- Fix tests under Python 2.6.
3.0 (2012-05-12)
- Added decorators for public, private and protected security declarations.
- Update tests to take advantage of automatic test suite discovery.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
AccessControl-5.3.1.tar.gz
(111.7 kB
view hashes)
Built Distributions
Close
Hashes for AccessControl-5.3.1-cp310-cp310-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | f76f9fd8a33a259dc5dcae8e1cb10f4ed1e51c0c842243981430440bad2206c3 |
|
MD5 | 9ff5834332f8a001820188ad73aa330b |
|
BLAKE2-256 | cc678f53dad32f39c91e38d644e06333206242135951a6d734718371063dc23f |
Close
Hashes for AccessControl-5.3.1-cp310-cp310-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 97979df6a5013accd03e0617fe0e7a5e30a8d6f84a7fa83d5a6629e3cb635c32 |
|
MD5 | 5ef09c9b8f91b431e30399e941257280 |
|
BLAKE2-256 | d876c4d8891e328623851e0e15b1e08261cf6074d58c9fb7ff79c9a5093e1426 |
Close
Hashes for AccessControl-5.3.1-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 42191e54cc619aa3534f71b3d2d7fb71ac71b41cc7c0c051452adf7dfe9abba5 |
|
MD5 | eada60c60d5b345ea16a7759f886a69c |
|
BLAKE2-256 | 6d6a0f5fd8cd4c3de69e613dddaceb7e5735043ab89e3188f4771b4ea055f52f |
Close
Hashes for AccessControl-5.3.1-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 69bfdded02d3befb681a9eea7f19fb0831d1f13c72b4616c5f6ca547886503ec |
|
MD5 | 6a92fba6be3498b8d87c1225a51baaf2 |
|
BLAKE2-256 | 7f302f5c4b9f75477399ecd8b040b50a92257d86cc7e3ee329bdd526874f62af |
Close
Hashes for AccessControl-5.3.1-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 10e503b56a11148a78159740933a85a4886f61053c7ff217795bd60c5ac8b8e0 |
|
MD5 | 78b6e8993afcbbd2359f0e4ec198edcb |
|
BLAKE2-256 | 17fd1cf331e36195afd754603a9051b2a8b820bcfae011481514b885c852831d |
Close
Hashes for AccessControl-5.3.1-cp310-cp310-macosx_10_15_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5bf0bf9a85ff6d84f5989e1e74fcd9f5d5a29e2b1c132f76733f232a2741c5a7 |
|
MD5 | 6145b9aa546a87395ae43482f181ca52 |
|
BLAKE2-256 | 8004e78e84f3ce6f1f03e1fcda97739348915d34ed0bcf5601d052a7518c85c4 |
Close
Hashes for AccessControl-5.3.1-cp39-cp39-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 58b5799225c1c0ca576743cf56299a79fca834945b4f999445822fe0f0d60ea6 |
|
MD5 | c2ba5e0521ad1251d091ad2d5565a93c |
|
BLAKE2-256 | fee8de01f5c273caf749665ddf2c34af6b00eebe0711c9346bcd1208c9150180 |
Close
Hashes for AccessControl-5.3.1-cp39-cp39-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | a9c243e9b02179df1a96d3560eeb7160ebae69ca413be1dcfc51dd5c252aed25 |
|
MD5 | d29a8011ad9798ac1647131499fa31a8 |
|
BLAKE2-256 | 592c832533efaf912128e2cf3944fb9accb640b3cb3b36694ecfa27dadfefb56 |
Close
Hashes for AccessControl-5.3.1-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | f9c38d2ad693ec942bc0c729dd0e0f2c81a8820ffbe88bcc2619d73d6f709112 |
|
MD5 | 8559c0b707ede3ea6fce73245b07511d |
|
BLAKE2-256 | dd4caf74c3a6475ba395c794a09f274e5305f6225ad1f0c769c7f93381509912 |
Close
Hashes for AccessControl-5.3.1-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | cea6edea45ee08ee112aceb5c2911fee2fea82c1d7934ef7518bc96f6495a75f |
|
MD5 | 172af6bb0e14b1c2abe89dd7aaa939e7 |
|
BLAKE2-256 | 6f354b9e51f6f27aa4abd12ef439b582bcc9d00eeecf5eeafca8f71d50d0029d |
Close
Hashes for AccessControl-5.3.1-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | ea2be76920ae94ceff705a489095ba6cc17e9becc9486dd8c50debba1ad47a46 |
|
MD5 | b6783e906d5e322178d01a6bcb3bdce0 |
|
BLAKE2-256 | 25e22422f980d81619c21736da0686323cad3e03c570dfa21de6ddefabe3466a |
Close
Hashes for AccessControl-5.3.1-cp39-cp39-macosx_10_15_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5761c6343c04f64a45ddbcb6d770fe3e8d352ba6b5ca7d039b7c761a9f8929ea |
|
MD5 | 472e26916f32df0be48c0eeb74a43bc2 |
|
BLAKE2-256 | 064f0e6f197146fe5e85f3474fc9bce8b3d4515864b5337e4ca762033c502156 |
Close
Hashes for AccessControl-5.3.1-cp38-cp38-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | b2f9bd50a8ee508bab7529c7f2a0704aa460e2356defa5bb6ae3ad7b384c4340 |
|
MD5 | 6b6d2cac73cc091ed693c7f3c226ce27 |
|
BLAKE2-256 | 153ae45888c74c77ac6babfa9d35cec0ff9c48f89b17c06cf276cf57107de5ee |
Close
Hashes for AccessControl-5.3.1-cp38-cp38-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | c4da5968728a15410d1ecb3536deb6abedd033780a545887a60ee95def8a77a3 |
|
MD5 | 76301da265f31889ad7cb0a2c68eca29 |
|
BLAKE2-256 | 6a77d2d658323c99867be6c89bfb1829d2e5c3a929a452e0c4106b892db46714 |
Close
Hashes for AccessControl-5.3.1-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 286cce2078e38fd0647a6618a3974274df5946fb102548fee008ae44b5c07951 |
|
MD5 | 52fbb53a16906a3b9ab62d543ecff394 |
|
BLAKE2-256 | 0df699c0a60020ac6c14855eb679b7be3b639e4fc87a53f18d9c0e55d4cb9e7f |
Close
Hashes for AccessControl-5.3.1-cp38-cp38-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | af88bf7e6347c9bbc0895e9b063bfdbbd6060ebe2c48ed6280481892a2d63384 |
|
MD5 | d2cd677f158ec7e9173e569502c71baf |
|
BLAKE2-256 | f50610c43c23e7498eb176174f279c748b38bdbe81722b1037b5a2b140ec1904 |
Close
Hashes for AccessControl-5.3.1-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e44cf774104606bf01a1d7c145a71eb638b8ce0d20a19a0e5eee243ed15c5878 |
|
MD5 | c3aade3e4f3fdcecc1c1e8d52046e46d |
|
BLAKE2-256 | fda35b09461b6bf61dfe4a77d52673f486896dfb546bbc4a7ec87c51f66ebb25 |
Close
Hashes for AccessControl-5.3.1-cp38-cp38-macosx_10_14_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 996c248d67b4b46c66da540df4561fd9c7c6418e5cc825d2b73a581c6f04d130 |
|
MD5 | 9b36122b39bfe536bc15bf7f51363978 |
|
BLAKE2-256 | 2d11878f881fd03c3c3d2b4671ab3dc7960b5595c22d6f6256b46b368f8ae4ae |
Close
Hashes for AccessControl-5.3.1-cp37-cp37m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 10e735a06011f90a060d675b8059455414b7bb7941916e7279067a312c99da00 |
|
MD5 | 6660e5246a360e5513e119cccfcc9e22 |
|
BLAKE2-256 | fc7b75026937ba8789c8f7f1697d66ba6fd2880825eb67beb80fed972d60241d |
Close
Hashes for AccessControl-5.3.1-cp37-cp37m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 934ab1f56fd717c5e866bae4ea15a107936607606f12546a3dd1c763d94a1d5a |
|
MD5 | fc5bd601aab998b0b66076d66f9ee18a |
|
BLAKE2-256 | 905cda57876b1cba8928d17ddff379af7d32e5851b0ff8f77b6197d1356eb7e6 |
Close
Hashes for AccessControl-5.3.1-cp37-cp37m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | a0cc1e487c1281c18e796d5b99a56b2c58e61b522bc8812dd7e8d1d3e1b9d8e2 |
|
MD5 | e0939a907feb7878b7f83dbf81185694 |
|
BLAKE2-256 | 80f979759a6fda8f43aacc8b925094502d8af42f50edb5b3587157c338925806 |
Close
Hashes for AccessControl-5.3.1-cp37-cp37m-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 747750ace987eea5720d43dc82d78af2a84bc41aa512113560c7339141c79e7a |
|
MD5 | 0672493467d9b952e004f1277023357a |
|
BLAKE2-256 | 9acbf55eee5d01835109b9b71e732af7150d3d87dfd52d1f35a6753f81362655 |
Close
Hashes for AccessControl-5.3.1-cp37-cp37m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 521aec80cd40c1627114fca972895f295157f96267c4bcd1bfff149cbd6dc777 |
|
MD5 | 43ab8dc3c16e45f13ebe65751e1df539 |
|
BLAKE2-256 | 49abc471b292320f91a02e26413881034b69d3550596bcc5c315e52d3ae25149 |
Close
Hashes for AccessControl-5.3.1-cp37-cp37m-macosx_10_14_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 87c54a49957aec2318b1255d3ac46fd2d92e11ee1278d81c0ecb240eee1a9854 |
|
MD5 | 00c8cfb4afacaf94d00fd398ed81f213 |
|
BLAKE2-256 | 84d4dfd17e7b0bf8b589b6203bda79ccf6e6b0c41114ca7e7488e8341b44a04b |
Close
Hashes for AccessControl-5.3.1-cp36-cp36m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 79fbc6640ebede9c7edf2268d4c5f0c5e6b1f428130125abb941fb4b1756d758 |
|
MD5 | 6960371795c9d88d7d8616d48649db0c |
|
BLAKE2-256 | cb54e1ef33a583f2a9f52c0c5272733e529ad9d631b75f5afda5cf03f7973b53 |
Close
Hashes for AccessControl-5.3.1-cp36-cp36m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 919723352f14c7985c681311fe287db24ca70dfe43cc61097fc8a0e19af365f2 |
|
MD5 | 61661384fe35839317dc7a5a87ae44a2 |
|
BLAKE2-256 | 0f04c9d2efc20c8c4e54c978fb96fd80ff9240064d1d309040b342d512da1916 |
Close
Hashes for AccessControl-5.3.1-cp36-cp36m-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 71428845fe4ed8c09fd36b4ce7e975f3022dfde39c3702794896a27cbf6ac9b3 |
|
MD5 | 12de3aec384e9df874732654d4d5932a |
|
BLAKE2-256 | bc316f73fedbc0cc5b151d76a9a3482640fa9e97ad8be5f20c5af2d3652aa3ef |
Close
Hashes for AccessControl-5.3.1-cp36-cp36m-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 2e0da00dad257349bc07ae827b105a7d221e476bd45dcc293dcbbf664f4bc87f |
|
MD5 | 31e2328b0ea069e0c59c6efb652c739a |
|
BLAKE2-256 | 5ef2de6a61ab1c5815a8230b89eaea4ed6c09d794ff9cf42b25a48804d7271d1 |
Close
Hashes for AccessControl-5.3.1-cp36-cp36m-manylinux_2_5_i686.manylinux1_i686.manylinux_2_12_i686.manylinux2010_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 1bddd1ded9ec74e868caf4d56ac26c3cf84a4905b75f07d12fd603e5b99cb9c3 |
|
MD5 | eb64e2325f33f49c2ab39f386f414bf1 |
|
BLAKE2-256 | 9f13d42aff40e39a99f1752075b6612fe4e099dbeb3650713c6f94891fe6b341 |
Close
Hashes for AccessControl-5.3.1-cp36-cp36m-macosx_10_14_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 6761d8fb6bb9d35177ea1c96010241ae6500d540d2d8d0539bed2f83e2e9ddc8 |
|
MD5 | 9e3a64c481b18736f719be046af100c0 |
|
BLAKE2-256 | 7a8eb7df82a65a8a1a73d3d5819f21fd4af5a4ee8afd93fc6593e2642c0c49f3 |
Close
Hashes for AccessControl-5.3.1-cp35-cp35m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 234f9a3540a4f7c54368a758b92dddcb78f1226fbada25bf58099c040ce68216 |
|
MD5 | 0dbeea4e0793d363128e788bc13f65b8 |
|
BLAKE2-256 | 01dba4d2291c7c2d29b1479619ab9a96aef387a2f6b76fb26e83acd2c6b172c7 |
Close
Hashes for AccessControl-5.3.1-cp35-cp35m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 020467e0f2d6550da212c9b0db46cb69993c03a9e1f06ac669bc5ed8ef5f9fa2 |
|
MD5 | d1e871f5c766bcd8834e867005320362 |
|
BLAKE2-256 | 76e380c57a804ef9e3b584f57a2a0fb59cfde46c9223dd35bef26d284f873dba |
Close
Hashes for AccessControl-5.3.1-cp27-cp27m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 2f5ecd2eee6bc30219c9b6add3e4e670163b7734c14bf3346d9fe7369f38b15e |
|
MD5 | d3b9ff4c2248d1a30dc56405f5a2907c |
|
BLAKE2-256 | aa0cbc6f0d6d39cc52365c2c974c1409df044a7fc108bb42a804fdfcf8ca03b3 |
Close
Hashes for AccessControl-5.3.1-cp27-cp27m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | fccf2c08507094e798041c064d6c6282c24ff873529f7a6d89f67ecb73e9af5f |
|
MD5 | 73ba60e47d6de4344c32ed1b6657e529 |
|
BLAKE2-256 | 594a1b00001e8f5d65abc24475bd438f471d641e24e67e258e180a262baa3f2d |
Close
Hashes for AccessControl-5.3.1-cp27-cp27m-macosx_10_14_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 7546e95d4c8908ecc3eff8a00fdd79f8504886a8b9af1a827a3d2e0644254555 |
|
MD5 | 70f764b142d2f606ea32e62fedcf5591 |
|
BLAKE2-256 | 0e5983d11b16bd60db2b82517402b463929686067631fe38ac5641a19cda2916 |