h!
With `auth.accessible_query` u get the rows accessible to a user, how to do
the inverse ?
I want to know the users who have a given permission
--
Msc. Yoel Benítez Fonseca
--
Resources:
- http://web2py.com
- http://web2py.com/book (Documentation)
- http://github.com/web2py/web2py (Source
I have a script that posts data to a third party form via PhantomJS. It
runs just fine on selenium in the python shell and when I run it in the W2P
shell (python web2py.py -S *app* -M). The problem is that when I call it
from the controller via a click, I get this traceback.
I am assuming
summarizing, web2py is just an executable. It protects you by default from
directory traversal attacks.
Everything but static folder is dinamically created by the executable.
You may want to serve static with your webserver of choice to relieve the
burden off of web2py shoulders, but ultimately
I know this is REALLY old but this topic is crucial to production and gets
VERY little attention.
So, it seems that the lock script has to run AFTER the web2py server has
been started by www-data (as a daemon by UWSGI, for example).
Or, can root start everything even in its locked state?
I
When I work in the development environment (virtualbox centos) and then
move the application to production server, I always run into permission
issues. The extracted (from tar) files will have userid and grouid as some
numbers, or root. Eventually I do a chown -R nginx to all files under
I thought this was going to be easy. Boy, was I wrong. Lots of good
documentation for ubuntu 11.10 from both ubuntu and linode. I got
apache, ssl, mysql, php, mod_wsgi, and phpmyadmin working perfectly
first time, no stumbles.
But, then I tried to make the mods to httpd.conf (really, its
I want to ask what folders should be accessible for writing?
Which folders should be set to permissions 644?
Who must to be owner all folders and files?
If you want 644 perms on the directory, the owner should be the user
that starts web2py. If webserver starts it, then the webserver user
(nobody, http, www, etc) should own the directory (or have permissions
to write to it anyway). If you start it manually, then the user you
used to start web2py
If the web2py server runs as www-data thatn web2py/ should be owned by
www-data and it should have read write permissions. You can then lock
your apps running
web2py/scripts/web2py-lock.sh
On Jan 5, 6:50 am, Branko Vukelić stu...@brankovukelic.com wrote:
If you want 644 perms on the directory,
Where can I read more detailed about it? Is there it in the web2py
book?
I see from the documentation it is possible to add a permission to
auth_permission with a blank table name. The application I am working
on has a notion of symbolic names for actions that can occur in the
application which in a prior version was assigned to groups (roles)
and then users were
A question about the example in the book (Authorization and CRUD:
def give_create_permission(form):
group_id = auth.id_group('user_%s' % auth.user.id)
auth.add_permission(group_id, 'read', db.comment)
etc...
auth.settings.register_onaccept = give_create_permission
crud.settings.auth =
Hello,
Why I dont see my own tables in list if tables when creating
permission entry in standard app admin interface? Only 'auth_XXX'
tables are being listed here. Should I mark by tables somehow to be
able to assign permissions for them using app admin?
David
13 matches
Mail list logo
