Security framework for Zope2.
Project description
Overview
AccessControl provides a general security framework for use in Zope2.
Changelog
For changes before verison 3.0, see HISTORY.txt.
3.0.14 (2018-01-25)
In str.format, check the security for keys and items that are accessed. Part of PloneHotfix20171128. [maurits]
set explicit PyPI index, the old zc.buildout defaults no longer work
add tox testing configuration
3.0.13 (2017-02-15)
In str.format, check the security for attributes that are accessed. Part of PloneHotfix20170117. [maurits]
Added override_container context manager. Used this in tests to make them pass when the standard permissive security assertions for strings has been changed. [maurits]
3.0.12 (2015-12-21)
Avoid acquiring access from module wrapped by SecurityInfo._ModuleSecurityInfo. See: https://github.com/zopefoundation/AccessControl/issues/12
3.0.11 (2014-11-02)
Harden test fix for machines that do not define localhost.
3.0.10 (2014-11-02)
Test fix for machines that do not define localhost.
3.0.9 (2014-08-08)
GitHub #6: Do not pass SecurityInfo instance itself to declarePublic/declarePrivate when using the public/private decorator. This fixes Conflicting security declarations warnings on Zope startup.
LP #1248529: Leave existing security manager in place inside RoleManager.manage_getUserRolesAndPermissions.
3.0.8 (2013-07-16)
LP #1169923: ensure initialization of shared ImplPython state (used by ImplC) when using the “C” security policy. Thanks to Arnaud Fontaine for the patch.
3.0.7 (2013-05-14)
Remove long-deprecated ‘Shared’ roles support (pre-dates Zope, never used by Zope itself)
Prevent infinite loop when looking up local roles in an acquisition chain with cycles.
3.0.6 (2012-10-31)
LP #1071067: Use a stronger random number generator and a constant time comparison function.
3.0.5 (2012-10-21)
LP #966101: Recognize special zope2.Private permission in ZCML role directive.
3.0.4 (2012-09-09)
LP #1047318: Tighten import restrictions for restricted code.
3.0.3 (2012-08-23)
Fix a bug in ZopeSecurityPolicy.py. Global variable rolesForPermissionOn could be overridden if __role__ had custom rolesForPermissionOn.
3.0.2 (2012-06-22)
Add Anonymous as a default role for Public permission.
3.0.1 (2012-05-24)
Fix tests under Python 2.6.
3.0 (2012-05-12)
Added decorators for public, private and protected security declarations.
Update tests to take advantage of automatic test suite discovery.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file AccessControl-3.0.14.tar.gz.
File metadata
- Download URL: AccessControl-3.0.14.tar.gz
- Upload date:
- Size: 101.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
287b363c5c9748c7dbf1e1a7cc9083462a960ab0c385805cdec7a7bc8ba8cc17
|
|
| MD5 |
f2a2925e1bf045156967177f3db05885
|
|
| BLAKE2b-256 |
08a195df2bf114c654ae1371fb3f242d3f88f0ec28e40780c672d869fe60eb32
|
