Forwardport from 2.10 branch:

Log message for revision 71819: - Fixed Collector #2190: Calls to zope.security.management.checkPermission aren't rerouted to Zope 2's security policy. NOTE: If you already have a Zope 2.10 instance running, you will either have to recreate it or add the following lines to the end of the etc/site.zcml file:: <securityPolicy component="Products.Five.security.FiveSecurityPolicy" />

Forwardport from 2.10 branch:
Log message for revision 71819: - Fixed Collector #2190: Calls to zope.security.management.checkPermission aren't rerouted to Zope 2's security policy. NOTE: If you already have a Zope 2.10 instance running, you will either have to recreate it or add the following lines to the end of the etc/site.zcml file:: <securityPolicy component="Products.Five.security.FiveSecurityPolicy" />
30d149bc · Philipp von Weitershausen · 76853859 · 30d149bc · 30d149bc · 30d149bc
Commit 30d149bc authored Jan 08, 2007 by Philipp von Weitershausen
Hide whitespace changes
Inline Side-by-side

Showing with 24 additions and 6 deletions

doc/CHANGES.txt doc/CHANGES.txt +11 -0

lib/python/ZPublisher/Publish.py lib/python/ZPublisher/Publish.py +7 -0

skel/etc/site.zcml skel/etc/site.zcml +6 -6

No files found.
--- a/doc/CHANGES.txt
+++ b/doc/CHANGES.txt
@@ -8,6 +8,17 @@ Zope Changes
    Restructuring
+      - Fixed Collector #2190: Calls to
+        zope.security.management.checkPermission aren't rerouted to
+        Zope 2's security policy.
+        NOTE: If you already have a Zope 2.10 instance running, you
+        will either have to recreate it or add the following lines to
+        the end of the etc/site.zcml file::
+          <securityPolicy
+                component="Products.Five.security.FiveSecurityPolicy" />
      - Fixed Collector #2223: Evaluation of booleans in TALES and the
        'default' variable.

--- a/lib/python/ZPublisher/Publish.py
+++ b/lib/python/ZPublisher/Publish.py
@@ -22,6 +22,7 @@ from maybe_lock import allocate_lock
 from mapply import mapply
 from zExceptions import Redirect
 from zope.publisher.browser import setDefaultSkin
+from zope.security.management import newInteraction, endInteraction
 class Retry(Exception):
    """Raise this to retry a request
@@ -74,6 +75,9 @@ def publish(request, module_name, after_list, debug=0,
    response=None
    try:
+        # TODO pass request here once BaseRequest implements IParticipation
+        newInteraction()
        request.processInputs()
        request_get=request.get
@@ -119,6 +123,7 @@ def publish(request, module_name, after_list, debug=0,
        if transactions_manager:
            transactions_manager.commit()
+        endInteraction()
        return response
    except:
@@ -154,6 +159,7 @@ def publish(request, module_name, after_list, debug=0,
            finally:
                if transactions_manager:
                    transactions_manager.abort()
+                endInteraction()
            # Only reachable if Retry is raised and request supports retry.
            newrequest=request.retry()
@@ -168,6 +174,7 @@ def publish(request, module_name, after_list, debug=0,
        else:
            if transactions_manager:
                transactions_manager.abort()
+            endInteraction()
            raise

--- a/skel/etc/site.zcml
+++ b/skel/etc/site.zcml
@@ -3,25 +3,25 @@
    xmlns:meta="http://namespaces.zope.org/meta"
    xmlns:five="http://namespaces.zope.org/five">
+  <meta:provides feature="devmode" />
  <include package="Products.Five" />
  <meta:redefinePermission from="zope2.Public" to="zope.Public" />
  <!-- Load the meta -->
  <include files="package-includes/*-meta.zcml" />
  <five:loadProducts file="meta.zcml"/>
  <!-- Load the configuration -->
  <include files="package-includes/*-configure.zcml" />
  <five:loadProducts />
  <!-- Load the configuration overrides-->
-  <includeOverrides files="package-includes/*-overrides.zcml" />
  <five:loadProductsOverrides />
+  <securityPolicy
+      component="Products.Five.security.FiveSecurityPolicy" />
 </configure>