[Zope] no accounts in root user folder?

Hello, I have a zope app in a folder and have an exUserFolder in there to authenticate the app's users. The app is working fine and i get authenticated by the exUserFolder and everything works. I tried to delete the single "admin" account (with Manager privileges) from the root standard user

Re: [Zope] database connections from external method

Tino Wildenhain wrote: I want to have full access rights on the database through the external methods. Usually you dont want that. Yes, usually i don't. Sane security constrains on database save you a lot mistakes if done right. You can also use views and stored functions to further tigh

Re: [Zope] database connections from external method

Chris Withers wrote: Vangelis Mihalopoulos wrote: [zope -> ] (which btw i believe to be very secure) The why do you consider it a risk? I don't really. But when i present my security assessment report saying "Zope has never had a compomising security issue." i

Re: [Zope] database connections from external method

Chris Withers wrote: Have a look at the ZSQL methods code, I remember this being pretty old and convoluted :-( Ok, thanks! I take a look. Well, i am running zope under root privileges in "read-only" mode. What does this mean? I am opening the ZODB in read-only, using the appropriate par

Re: [Zope] database connections from external method

Dieter Maurer wrote: Vangelis Mihalopoulos wrote at 2005-10-19 12:22 +0300: ... I am thinking of using a Z Database Connection (mysql) from within an external method, without using Z SQL Methods, but can't figure out how i can "safely" do it Callin

Re: [Zope] database connections from external method

Tino Wildenhain wrote: The threading is handled by the ZDA, so you can use query() or what the method actually is. I couldn't find a method like that... any hints? Otoh, what do you think you gain from circumventing ZSQL Methods? Well, i am running zope under root privileges in "read-only

[Zope] database connections from external method

Hi, I want an external method to access a mysql database on each call. For now, i open up a new connection on every call, but this probably won't scale much either on performance (new connection on each call is quite an overhead) or availability (the number of open connections is restricted).

[Zope] Pass index in a TAL path expr

Hello, if "data" is a tuple (or list), how can directly access it's contents using path expressions, like in: -- script "s": return context.t(data=("one", "two", "three")) -- template "t" The above example give out a TypeError for the index... "options/data/0" is not correct. What should i

Re: [Zope] DTML namespace problem (was: dtml-tree issue)

Just added__allow_access_to_unprotected_subobjects__=1as an attribute of my class defined in an external python script and it works fine. Thanks Tino! Tino Wildenhain wrote: Hi, Am Montag, den 11.04.2005, 14:08 +0300 schrieb Vangelis Mihalopoulos: Andreas Jung wrote: You should

Re: [Zope] DTML namespace problem (was: dtml-tree issue)

Andreas Jung wrote: You should *not* define classes inside PythonScripts. PythonScripts are stricted and don't provide the full functionality. Either use filesystem based code (Zope Product) or use simple Python datatypes as dictionaries in this case. An External Method behaves exactly the same

[Zope] DTML namespace problem (was: dtml-tree issue)

Hello, i have focused my problem on this: having a Python Script "testScript": class obj: a = 1 b = 2 c = 3 return obj() and a DTML Document "testWith": --- --- when

[Zope] dtml-tree issue

Hello, I want to use dtml-tree. I want to populate this tree using an external method that like this one: getChildren(parent_id) => [child, child, child, ..] where "parent_id" is a string and each child is a node (python object). My problem is what kind of object must each node be, in order

Re: [Zope] script python error

Maybe using quotese.g. RESP.redirect('/store_nic/consumables/test') prabuddha ray wrote: wats wrong with the given puthon script request = container.REQUEST RESP = request.RESPONSE passwd = context.request.password1 user = context.request.username, if(container.chkpwd(uname=user,pwd=