Mercurial > p > roundup > code
comparison templates/classic/html/page.html @ 3117:460eb0209a9e
Permissions improvements.
- have Permissions only test the check function if itemid is suppled
- modify index templates to check for row-level Permission
- more documentation of security mechanisms
- better unit tests for security mechanisms
| author | Richard Jones <richard@users.sourceforge.net> |
|---|---|
| date | Fri, 28 Jan 2005 03:51:19 +0000 |
| parents | 896118935b7c |
| children | 246c04b1485d |
comparison
equal
deleted
inserted
replaced
| 3115:ece73371713c | 3117:460eb0209a9e |
|---|---|
| 86 </span> | 86 </span> |
| 87 <span tal:condition="python:request.user.hasPermission('View', 'user') | 87 <span tal:condition="python:request.user.hasPermission('View', 'user') |
| 88 or request.user.hasPermission('Edit', 'user')"> | 88 or request.user.hasPermission('Edit', 'user')"> |
| 89 <a href="user" i18n:translate="">User List</a><br> | 89 <a href="user" i18n:translate="">User List</a><br> |
| 90 </span> | 90 </span> |
| 91 <a tal:condition="python:request.user.hasPermission('Edit', 'user')" | 91 <a tal:condition="python:request.user.hasPermission('Create', 'user')" |
| 92 href="user?@template=item" i18n:translate="">Add User</a> | 92 href="user?@template=item" i18n:translate="">Add User</a> |
| 93 </p> | 93 </p> |
| 94 | 94 |
| 95 <form method="POST" tal:condition="python:request.user.username=='anonymous'" | 95 <form method="POST" tal:condition="python:request.user.username=='anonymous'" |
| 96 tal:attributes="action request/base"> | 96 tal:attributes="action request/base"> |