I've just posted some code http://entitycrisis.blogspot.com/2007/02/restful-turbogears.html
of a RESTful CherryPy controller I am using in a couple of projects. You'll notice I dynamically decorate some methods on object instantiation with the error_handler decorator, which effectively makes the error_handler decorator the last decorator to be called on any method. I am wondering if the order of decorators can compromise my applications security, as some parts of the TG documentation suggest, but are not entirely clear on. If I decorate a function like so: @error_handler @identity.require @expose Is my function call still properly authenticated by the identity.require decorator? -Sw. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears?hl=en -~----------~----~----~----~------~----~------~--~---
