Security framework for Zope.
Project description
AccessControl
AccessControl provides a general security framework for use in Zope.
Changelog
For changes before version 3.0, see HISTORY.rst.
5.0 (2020-10-07)
- Add support for Python 3.9.
- Remove deprecated classes and functions in
(see #32):
- AccessControl/DTML.py
- AccessControl/Owned.py
- AccessControl/Role.py
- AccessControl/Permissions.py
- Add deprecation warnings for BBB imports in:
- AccessControl/AuthEncoding.py
- AccessControl/Owned.py
- AccessControl/Role.py
- AccessControl/User.py
- Although this version might run on Zope 4, it is no longer supported because of the dropped deprecation warnings.
4.2 (2020-04-20)
4.1 (2019-09-02)
- Python 3: Allow iteration over the result of dict.{keys,values,items} (#89).
4.0 (2019-05-08)
Changes since 3.0.12:
- Add support for Python 3.5, 3.6, 3.7 and 3.8.
- Restore simple access to bytes methods in Python 3 (#83)
- Clarify deprecation warnings for several BBB shims. (#32)
- Add a test to prove that a user folder flag cannot be acquired elsewhere. (#7)
- Tighten basic auth string handling in BasicUserFolder.identify (#56)
- Prevent the Zope 4 ZMI from showing an add dialog for the user folder. (#82)
- Fix order of roles returned by AccessControl.rolemanager.RoleManager.userdefined_roles.
- Add configuration for zodbupdate.
- Add TaintedBytes besides TaintedString in AccessControl.tainted. (#57)
- Security fix: In str.format, check the security for attributes that are accessed. (Ported from 2.13).
- Port override_container context manager here from 2.13.
- Add AppVeyor configuration to automate building Windows eggs.
- Fix for compilers that only support C89 syntax (e.g. on Windows).
- Sanitize and test RoleManager role handling.
- Depend on RestrictedPython >= 4.0.
- #16: Fixed permission handling by avoiding column and row numbers as identifiers for permissions and roles.
- Extract .AuthEncoding to its own package for reuse.
- Declare missing dependency on BTrees.
- Drop Record dependency, which now does its own security declaration.
- Remove leftovers from history support dropped in Zope.
- Remove duplicate guard against * imports. (#60)
3.0.12 (2015-12-21)
- Avoid acquiring access from module wrapped by SecurityInfo._ModuleSecurityInfo. See: https://github.com/zopefoundation/AccessControl/issues/12
3.0.11 (2014-11-02)
- Harden test fix for machines that do not define localhost.
3.0.10 (2014-11-02)
- Test fix for machines that do not define localhost.
3.0.9 (2014-08-08)
- GitHub #6: Do not pass SecurityInfo instance itself to declarePublic/declarePrivate when using the public/private decorator. This fixes Conflicting security declarations warnings on Zope startup.
- LP #1248529: Leave existing security manager in place inside RoleManager.manage_getUserRolesAndPermissions.
3.0.8 (2013-07-16)
- LP #1169923: ensure initialization of shared ImplPython state (used by ImplC) when using the “C” security policy. Thanks to Arnaud Fontaine for the patch.
3.0.7 (2013-05-14)
- Remove long-deprecated ‘Shared’ roles support (pre-dates Zope, never used by Zope itself)
- Prevent infinite loop when looking up local roles in an acquisition chain with cycles.
3.0.6 (2012-10-31)
- LP #1071067: Use a stronger random number generator and a constant time comparison function.
3.0.5 (2012-10-21)
- LP #966101: Recognize special zope2.Private permission in ZCML role directive.
3.0.4 (2012-09-09)
- LP #1047318: Tighten import restrictions for restricted code.
3.0.3 (2012-08-23)
- Fix a bug in ZopeSecurityPolicy.py. Global variable rolesForPermissionOn could be overridden if __role__ had custom rolesForPermissionOn.
3.0.2 (2012-06-22)
- Add Anonymous as a default role for Public permission.
3.0.1 (2012-05-24)
- Fix tests under Python 2.6.
3.0 (2012-05-12)
- Added decorators for public, private and protected security declarations.
- Update tests to take advantage of automatic test suite discovery.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Filename, size | File type | Python version | Upload date | Hashes |
---|---|---|---|---|
Filename, size AccessControl-5.0-cp27-cp27m-win32.whl (138.2 kB) | File type Wheel | Python version cp27 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp27-cp27m-win_amd64.whl (139.0 kB) | File type Wheel | Python version cp27 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp36-cp36m-win32.whl (139.5 kB) | File type Wheel | Python version cp36 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp36-cp36m-win_amd64.whl (141.2 kB) | File type Wheel | Python version cp36 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp37-cp37m-win32.whl (139.5 kB) | File type Wheel | Python version cp37 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp37-cp37m-win_amd64.whl (141.2 kB) | File type Wheel | Python version cp37 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp38-cp38-win32.whl (140.1 kB) | File type Wheel | Python version cp38 | Upload date | Hashes View |
Filename, size AccessControl-5.0-cp38-cp38-win_amd64.whl (141.7 kB) | File type Wheel | Python version cp38 | Upload date | Hashes View |
Filename, size AccessControl-5.0.tar.gz (105.2 kB) | File type Source | Python version None | Upload date | Hashes View |
Close
Hashes for AccessControl-5.0-cp27-cp27m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 6ceeca439637cf54e15943af7d879400020e9d4412dc9d19791b2ae07ca2b02e |
|
MD5 | 3c49f4b74b9f2e7cea0b0b15f7d65347 |
|
BLAKE2-256 | 1afcdf3d68ab5be8cb8c8ab48115c32f21f76c9a632f79e73a5045497f5612db |
Close
Hashes for AccessControl-5.0-cp27-cp27m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 304e75ecd239ff1f2a4dae620e1a90c461e4204b670ff062157ff6c2dc834557 |
|
MD5 | 4050c9d8613d688c05b929d27b99e8d1 |
|
BLAKE2-256 | ffd686c412660b6b565bbbef327856b99d75f81ada62ce9400d22f7eb5aea6e7 |
Close
Hashes for AccessControl-5.0-cp36-cp36m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | ae21a14a1c490e0670d33eeaafff568d75974d726d843e8174cf8f91897deb87 |
|
MD5 | c0cef167e24c2ebb97dc1e91c7102132 |
|
BLAKE2-256 | eef928f03d65f4a4506b1b166af40c8f989f50ac7391fad05b457f0a4a4f2db0 |
Close
Hashes for AccessControl-5.0-cp36-cp36m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 972a5c81ef151d5907858ca0edb2922d74134f688caee7c208be38f76858e677 |
|
MD5 | 883e94bb20cc494e21f0218e3f150b6c |
|
BLAKE2-256 | d494df54531e3ee0c25575781ff766e4531bb6d53011e6fd06a24cc406f8b42c |
Close
Hashes for AccessControl-5.0-cp37-cp37m-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e944b7da05925b918812a43cbc6a3983cfc901af08a29996b56f0210c50a56dc |
|
MD5 | 6ede255b87751e1f688572e67a7d086e |
|
BLAKE2-256 | a7aefb360588e98167fef81c00fcee75f052ba016c6e5a755ee0322fe431016d |
Close
Hashes for AccessControl-5.0-cp37-cp37m-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | d38bdf780dd9772037d5609c354c138270f5a660f8ff6a08e76a3f56c5132b2e |
|
MD5 | 0edb1720818cb2915271f6408d508649 |
|
BLAKE2-256 | 2797f1bde501dbd6fed2ea3cf9996b58eaf49c8b9b8e0104074531105f05882d |
Close
Hashes for AccessControl-5.0-cp38-cp38-win32.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 8a12735530b8dff6e581ca0598ddcc726a47619845a8b8c897fffaedb589a145 |
|
MD5 | fee4e58cce522374fc7ff36704987d7d |
|
BLAKE2-256 | 6a04ac7356e0771116c7173cefc5c87ad90e0e9ef99ed1ccd62e371e54a49fc5 |
Close
Hashes for AccessControl-5.0-cp38-cp38-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 2dd7dcdbd680501b4e7a7af3d2d7c7f77916b1924ea5011abd7d0bb86f1e5df5 |
|
MD5 | a9ca47c97cda78aa7d958a56efbe9e1b |
|
BLAKE2-256 | dd89a602bf1b7eb9d33dcf5f947df3674e9b78da47d5674f053ee213c53f24dd |