Security framework for Zope.
Project description
AccessControl
AccessControl provides a general security framework for use in Zope.
Changelog
For changes before version 3.0, see HISTORY.rst.
7.0 (2024-05-30)
Add preliminary support for Python 3.13 as of 3.13b1.
Remove support for Python 3.7.
Build Windows wheels on GHA.
Make dict views (.keys(), .items() and .values()) behave like their unrestricted versions. (#147)
Make .items() validate each keys and values, like .keys() and .values() do.
Fix build errors on recent macOS versions.
6.3 (2023-11-20)
Add support for Python 3.12.
6.2 (2023-09-04)
Fix information disclosure through str.format_map. (CVE-2023-41050)
6.1 (2023-05-22)
Update C header files for ExtensionClass and Acquisition from the original packages where needed. (#140)
Add preliminary support for Python 3.12a5.
6.0 (2023-01-12)
Build Linux binary wheels for Python 3.11
Drop support for Python 2.7, 3.5, 3.6.
5.7 (2022-11-17)
Add support for building arm64 wheels on macOS.
5.6 (2022-11-03)
Add support for final Python 3.11 release.
5.5 (2022-10-10)
Switch from -Ofast to -O3 when compiling code for Linux wheels. (#133)
Add support for Python 3.11 (as of 3.11.0rc2).
5.4 (2022-08-26)
Add support for Python 3.11 (as of 3.11.0b5).
Support default argument in next built-in function. (#131)
5.3.1 (2022-03-29)
Prevent race condition in guarded_import (#123)
5.3 (2022-02-25)
Provide AccessControl.get_safe_globals to facilitate safe use.
Honor PURE_PYTHON environment variable to enable python implementation during runtime.
Add support for Python 3.10.
5.2 (2021-07-30)
Fix Appveyor configuration so tests can run and wheels build.
5.1 (2021-07-30)
NOTE: This release has been yanked from PyPI due to wheel build issues.
Fix a remote code execution issue by preventing access to string.Formatter from restricted code.
5.0 (2020-10-07)
Add support for Python 3.9.
Remove deprecated classes and functions in (see #32):
AccessControl/DTML.py
AccessControl/Owned.py
AccessControl/Role.py
AccessControl/Permissions.py
Add deprecation warnings for BBB imports in:
AccessControl/AuthEncoding.py
AccessControl/Owned.py
AccessControl/Role.py
AccessControl/User.py
Although this version might run on Zope 4, it is no longer supported because of the dropped deprecation warnings.
4.2 (2020-04-20)
4.1 (2019-09-02)
Python 3: Allow iteration over the result of dict.{keys,values,items} (#89).
4.0 (2019-05-08)
Changes since 3.0.12:
Add support for Python 3.5, 3.6, 3.7 and 3.8.
Restore simple access to bytes methods in Python 3 (#83)
Clarify deprecation warnings for several BBB shims. (#32)
Add a test to prove that a user folder flag cannot be acquired elsewhere. (#7)
Tighten basic auth string handling in BasicUserFolder.identify (#56)
Prevent the Zope 4 ZMI from showing an add dialog for the user folder. (#82)
Fix order of roles returned by AccessControl.rolemanager.RoleManager.userdefined_roles.
Add configuration for zodbupdate.
Add TaintedBytes besides TaintedString in AccessControl.tainted. (#57)
Security fix: In str.format, check the security for attributes that are accessed. (Ported from 2.13).
Port override_container context manager here from 2.13.
Add AppVeyor configuration to automate building Windows eggs.
Fix for compilers that only support C89 syntax (e.g. on Windows).
Sanitize and test RoleManager role handling.
Depend on RestrictedPython >= 4.0.
#16: Fixed permission handling by avoiding column and row numbers as identifiers for permissions and roles.
Extract .AuthEncoding to its own package for reuse.
Declare missing dependency on BTrees.
Drop Record dependency, which now does its own security declaration.
Remove leftovers from history support dropped in Zope.
Remove duplicate guard against * imports. (#60)
3.0.12 (2015-12-21)
Avoid acquiring access from module wrapped by SecurityInfo._ModuleSecurityInfo. See: https://github.com/zopefoundation/AccessControl/issues/12
3.0.11 (2014-11-02)
Harden test fix for machines that do not define localhost.
3.0.10 (2014-11-02)
Test fix for machines that do not define localhost.
3.0.9 (2014-08-08)
GitHub #6: Do not pass SecurityInfo instance itself to declarePublic/declarePrivate when using the public/private decorator. This fixes Conflicting security declarations warnings on Zope startup.
LP #1248529: Leave existing security manager in place inside RoleManager.manage_getUserRolesAndPermissions.
3.0.8 (2013-07-16)
LP #1169923: ensure initialization of shared ImplPython state (used by ImplC) when using the “C” security policy. Thanks to Arnaud Fontaine for the patch.
3.0.7 (2013-05-14)
Remove long-deprecated ‘Shared’ roles support (pre-dates Zope, never used by Zope itself)
Prevent infinite loop when looking up local roles in an acquisition chain with cycles.
3.0.6 (2012-10-31)
LP #1071067: Use a stronger random number generator and a constant time comparison function.
3.0.5 (2012-10-21)
LP #966101: Recognize special zope2.Private permission in ZCML role directive.
3.0.4 (2012-09-09)
LP #1047318: Tighten import restrictions for restricted code.
3.0.3 (2012-08-23)
Fix a bug in ZopeSecurityPolicy.py. Global variable rolesForPermissionOn could be overridden if __role__ had custom rolesForPermissionOn.
3.0.2 (2012-06-22)
Add Anonymous as a default role for Public permission.
3.0.1 (2012-05-24)
Fix tests under Python 2.6.
3.0 (2012-05-12)
Added decorators for public, private and protected security declarations.
Update tests to take advantage of automatic test suite discovery.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distributions
Hashes for AccessControl-7.0-cp313-cp313-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e95dc4445e4cfadc98ee37d8f7263456e81abb7062d19a648452cfca725d31dd |
|
MD5 | 77b27b2bba33a400623b56326e16792c |
|
BLAKE2b-256 | 167ff444c65434d5856530232d0e2a4ef1d6a7d01cc547d1288de542f1433b4b |
Hashes for AccessControl-7.0-cp313-cp313-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 49c5f0d010a9986312e843acf21beb8c683e5b244818c7b82735f7f5e3b3eaf3 |
|
MD5 | b6b1b15f45e760685e23c72f4f1ee278 |
|
BLAKE2b-256 | 2d01c2181d8a1706be59caeaaea80072ce9b87335ff786941be878b1c1ff5ba1 |
Hashes for AccessControl-7.0-cp313-cp313-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 744cbb244c77936324f02ebe2026c9abdde298420bfd6546a896d2966a91220e |
|
MD5 | 4bc426642e922e9eee13437ceb670c9e |
|
BLAKE2b-256 | 2b028185f91938644d398984fef2009063e2f68114f644c704bbf5d5fbf644a6 |
Hashes for AccessControl-7.0-cp312-cp312-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 75c3489a083487d05372086226da15569c7179ab620b65a8287d3b2659b0c5d7 |
|
MD5 | dc599b59951412c5cf50a12132259e64 |
|
BLAKE2b-256 | d04feae267724a4482756adb5ae03b3af7e4ea51ab87bad748ced9880537c591 |
Hashes for AccessControl-7.0-cp312-cp312-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 066c2acaed61f7874b617215f29eb487e263614017796bc25399985440d15912 |
|
MD5 | a1eca5d99d6cf1b0f391d616888d841e |
|
BLAKE2b-256 | 2b73e1912f231b40cf95a524db367d5825ca29ebf0111f0943ceda499b8bfdac |
Hashes for AccessControl-7.0-cp312-cp312-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | b940ad62f097c241fc1490d19952ac8309000e06b51cb61f4865759ab2ae4c2e |
|
MD5 | 83eb675ca8c3c0661c027601f93a426b |
|
BLAKE2b-256 | 1404bffd42a3146a4c091869ebf6d91a70871c65f1a21238532e404f941e4f6d |
Hashes for AccessControl-7.0-cp312-cp312-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | bded1e6420ced6a99dc8953e7f70d2be42c483a8424ffe71f9b4dab7598682e2 |
|
MD5 | 09a41eebb712b731dae7ba215f19c161 |
|
BLAKE2b-256 | 55be9a520240928fbfa43de8b64141281bb4b5096c09ea3868c36fa87e0a0534 |
Hashes for AccessControl-7.0-cp312-cp312-macosx_11_0_arm64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 1de9a22eea65002acef6dbea00f23106bca5e98b807d8eb4c60a31ef5769e50e |
|
MD5 | cf1cab40da847ef356b42edb9ea3f554 |
|
BLAKE2b-256 | 2f48c9ecf70b7dcc8c1d7ce6595dc1ddbcf6a34d06d045ac9b733f8c0928e82f |
Hashes for AccessControl-7.0-cp312-cp312-macosx_10_9_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 7dc309ad2240a662222d1bc9989c2dd9a98568e7d2c17385160c452de4a59f0e |
|
MD5 | 1022e2706853b1b032c51abc5c5aac35 |
|
BLAKE2b-256 | 76a5b0372f198d51739e96d95eb9ca7e7a87fb9f281b42b27dd6d68fb8b11725 |
Hashes for AccessControl-7.0-cp311-cp311-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | fd766a36c454a4f633c582c57944d2d430edf92d505bf81e345c36ec064a6255 |
|
MD5 | 7aa478c6019d70f839235fad1cd2ee46 |
|
BLAKE2b-256 | eb46e80f48ce02d72b29bf4e14a74e267767bd2617d9a7336afcf146f2325b75 |
Hashes for AccessControl-7.0-cp311-cp311-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 23dff180a4b875b0df6763c1d15ac3eb950ca94573e03170251f1c13e0aeb52d |
|
MD5 | 9accbd85ee2a54ea5d2ed6095e5cad3f |
|
BLAKE2b-256 | bf928460e1141a985c8f7e908641f2214edcf5a680d02746850e3ba920645e27 |
Hashes for AccessControl-7.0-cp311-cp311-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 113d296cd6e2bb5c8ebd5da33372ab739c1bde88fea661609a53b4726f4fb297 |
|
MD5 | 6d0c8a2df2fa938300353be171c99597 |
|
BLAKE2b-256 | f997cb0fbe9acc35ef26ca17f8510ff5b4beb7b3fa8d188cdc01795784faa47a |
Hashes for AccessControl-7.0-cp311-cp311-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 058c36aca333aed86b0fde7c284458a5eca4260e8b8fe801c9c5798c444a1bee |
|
MD5 | db19dfaaebac38973ba863bfc575bcd4 |
|
BLAKE2b-256 | 17a20c80fe2fbd8c2a10270a67fc8cae29acd8f992bab5e1c297995130261872 |
Hashes for AccessControl-7.0-cp311-cp311-macosx_11_0_arm64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e5010fdb600a9b8aa4ec0f5c3c74169e15f0f516210c7a707845e51839493ae2 |
|
MD5 | f5e5077053e84ce33cae3bb539965bc4 |
|
BLAKE2b-256 | 60d6c15d5f01187274be9097f32aabff6dab9c7e5fede6f3ce83d827d560063b |
Hashes for AccessControl-7.0-cp311-cp311-macosx_10_9_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | d4454e9ff288418ed49e61e43c7b80104929bb069c684823ceaf345e05879890 |
|
MD5 | 518e366d0423c4ba1ffedf5e850b5844 |
|
BLAKE2b-256 | f55dbeb25078ba02dd393465a87662f016d61fba19e0fea59118042131c8ba33 |
Hashes for AccessControl-7.0-cp310-cp310-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 3f9ad701fc06a0afdbd588312cc209e0078861e2b8e3c73d40eb34df9f130c18 |
|
MD5 | 2a36d41ffb21d9fca55fc96c5ff7fe12 |
|
BLAKE2b-256 | d11600920b742d748784dfcbf210e66b7595e26f5d523f7851b2e31fa43d5dab |
Hashes for AccessControl-7.0-cp310-cp310-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e0fd1b2cf780eddaac68d60e1b324d5ebe9fcca849161914157d1ede1673188e |
|
MD5 | c134628ddc16d66da553fb807fd5f9e7 |
|
BLAKE2b-256 | f50180b53ff655629e766f559a45c78330c2e27ca61419d0dfce13a28ffc0327 |
Hashes for AccessControl-7.0-cp310-cp310-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5dcc9a4bc2cc1e8105f321a3b164fabf55d978834880afe4ea19c00b9a2c81a9 |
|
MD5 | f3df123282d5aa1c057ceb675a0445e4 |
|
BLAKE2b-256 | d663ef48a64ade06c5963725a371d68f76110f4cb145e8c8b1ffe0422c1d4692 |
Hashes for AccessControl-7.0-cp310-cp310-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 34b52e7bd1c9e43e470ab519b5d7b8ae11cfd99acf0163926aad9e75f1e45675 |
|
MD5 | 5f09edc25f918e13f143254372e864cf |
|
BLAKE2b-256 | 49602d8b4af5d15dd0d2cbbfc7fd3f66609ed6a4194ebecdf48b6ad895da9709 |
Hashes for AccessControl-7.0-cp310-cp310-macosx_11_0_arm64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 1a21e86c507eedbd8673cbe033b29f48af528c73bcefc603ff23bdcc5ad5f7c2 |
|
MD5 | 928f58eefeda180ab6896bcc49a31527 |
|
BLAKE2b-256 | e80bbb6cd7d5cd8d73874db7d68e22b156d59f9ab05abfad9e8ab7c6893a1fb3 |
Hashes for AccessControl-7.0-cp310-cp310-macosx_10_9_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | dc3e477c09d7de4dcd3b63f85f441bf36e4152e170c036690dc0f7be796753f1 |
|
MD5 | b110e5e21e079ba2a757d5af20e3fddb |
|
BLAKE2b-256 | b0d139997d905bb6fd8e7d9ff25a47391cf43a462b7ac694804be946c34bf819 |
Hashes for AccessControl-7.0-cp39-cp39-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 58afb846abd229b7ccaf6ed5a200d41efb51dc314b84aeb3ed40078c2373a57e |
|
MD5 | 4f45a10739b12c8e0095ad33f5f0c755 |
|
BLAKE2b-256 | 8a75080c4384a2882feb073e179a9d8653962b050c224019ac23a957dda94f3f |
Hashes for AccessControl-7.0-cp39-cp39-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | abb5d636571a9c93b9d628423e94e20260b3564ea62f924194accd8b2a2eab83 |
|
MD5 | c2961e809fc09d6461d55b43c11ca883 |
|
BLAKE2b-256 | d71f216e4892bcb3b966694acd9e2c78aedacb4d114b6adb8f70123548df09ee |
Hashes for AccessControl-7.0-cp39-cp39-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 581daaf95138fae220fc769854683e54e010e37f20d68120b7503b5b5b82ad6e |
|
MD5 | 0d5fe49d832644190567c57c372070fa |
|
BLAKE2b-256 | 10e3b03718b8a0b08ac4eeafc63b2f170227c523887322b12fa897868e52402e |
Hashes for AccessControl-7.0-cp39-cp39-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 818af4787166d222d47dd42f900916e4b262bd8a6d84ffabaa7ac8454da5ac8c |
|
MD5 | 241e0787fdeb84dc1e7d147b9f56281f |
|
BLAKE2b-256 | 4387ea8737a59faf1407747a1423590898d423b05108a589f8bfdc1dd3e004c2 |
Hashes for AccessControl-7.0-cp39-cp39-macosx_11_0_arm64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 3ec6bc068a51511cc4a696ce763fe25b03e6e09d568d062faf5e2bd1a0f58990 |
|
MD5 | 7b95fb89a1c9a6ddfff46931d62d0823 |
|
BLAKE2b-256 | 9f12c088be808788fbdb49af2d02afdbaafe8a99c0ba57db8f3799497385efd7 |
Hashes for AccessControl-7.0-cp39-cp39-macosx_10_9_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 8d0276b20db78cf15c499624e856f08b974956c968efe42fbc498c9bb9ca3ab8 |
|
MD5 | a2f806f505633fa06075d0dc25ee45f9 |
|
BLAKE2b-256 | 5cd1fbc7bf9f0eb75144b21c7e0b9358b70fcfa41f1e9cf78ff447c418b6d103 |
Hashes for AccessControl-7.0-cp38-cp38-win_amd64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | bb76318cc63de2b3da40c190385e5a08b187caab709e5b282b1d66ecff5d1ae9 |
|
MD5 | 90a476494a77612267eda0eb48be844c |
|
BLAKE2b-256 | 578e8de5726f80ec2656b72e619987b7a27ee245233c22ff0fef5e0fc25b81f2 |
Hashes for AccessControl-7.0-cp38-cp38-manylinux_2_17_aarch64.manylinux2014_aarch64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 867b6733a4c7a27f55a99dc6fdc615f13fa1140b3db9d9285dac66cc3056a058 |
|
MD5 | 4ef4e4cc4a0a03be6764ea97fea03457 |
|
BLAKE2b-256 | 90a00a61dd6bdd9e3061596b5af2e94be6dc62cf9094ee02468812313d3553e2 |
Hashes for AccessControl-7.0-cp38-cp38-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 757fd9cf213626909c0bc2dd1c7558402f9ae7b41ae50c746fab2124cd58420a |
|
MD5 | 8da43626407fc3ffaa9e055d80e34831 |
|
BLAKE2b-256 | ea2ca25feaa5dbf50238411160ac5123fffdc71b3c3b8034813c55fa2febf618 |
Hashes for AccessControl-7.0-cp38-cp38-manylinux_2_5_i686.manylinux1_i686.manylinux_2_17_i686.manylinux2014_i686.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 6402ddeb9bc25b9570a6c71e09c41c173db1eae67ae4bab23a7a3252254cc85e |
|
MD5 | 86f8badd37afb8f46e9f22b139726f00 |
|
BLAKE2b-256 | 43287f705a2fa64af62165b56c65b57c0b98c244823b2c3857f40174a9590601 |
Hashes for AccessControl-7.0-cp38-cp38-macosx_11_0_arm64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | fbf4dd457fe502049d7a6e7b53543e801213465d9eea8ce33e29bc9a1c06d9a4 |
|
MD5 | 3563322d8e225f483d7955c9a0d3de2a |
|
BLAKE2b-256 | f066cfa40a772a75a1921bbd11fcbcd8d38e86bb500e9a48fce90d7f6a0c334d |
Hashes for AccessControl-7.0-cp38-cp38-macosx_10_9_x86_64.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | a947aa76a14d65f47d7f92290fcc3902ee8418e0356caa5a54eb6cc773c3e7fc |
|
MD5 | ab844c7f060f928eaaa27e750f308b1a |
|
BLAKE2b-256 | 656c94d9d2953d05e1697577e16c59f14fe199c0514968c427ab470ccccb6e72 |