Rewrite (un)restrictedResolveValue, because the exception handling was very...

Rewrite (un)restrictedResolveValue, because the exception handling was very buggy, and it was easier to rewrite code than to band-aid the code. git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@37831 20353a03-c40f-0410-a6d1-a30d3c3de9de

Rewrite (un)restrictedResolveValue, because the exception handling was very...
Rewrite (un)restrictedResolveValue, because the exception handling was very buggy, and it was easier to rewrite code than to band-aid the code. git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@37831 20353a03-c40f-0410-a6d1-a30d3c3de9de
c3c81b44 · Yoshinori Okuji · 13752de1 · c3c81b44
Commit c3c81b44 authored Aug 16, 2010 by Yoshinori Okuji
Show whitespace changes
Inline Side-by-side

Showing with 33 additions and 54 deletions

product/ERP5/Document/BusinessTemplate.py product/ERP5/Document/BusinessTemplate.py +33 -54

No files found.
--- a/product/ERP5/Document/BusinessTemplate.py
+++ b/product/ERP5/Document/BusinessTemplate.py
@@ -613,83 +613,62 @@ class BaseTemplateItem(Implicit, Persistent):
    """
    return self.__class__.__name__[:-12]
-  def restrictedResolveValue(self, context=None, path=None, default=_MARKER):
+  def restrictedResolveValue(self, context=None, path='', default=_MARKER):
    """
      Get the value with checking the security.
      This method does not acquire the parent.
    """
-    def restrictedGetItem(container, key, default):
+    return self.unrestrictedResolveValue(context, path, default=default,
-      validate = getSecurityManager().validate
+                                         restricted=1)
-      try:
-        value = container[key]
-      except KeyError:
-        if default is not _MARKER:
-          return default
-        return None
-      if value is not None:
-        try:
-          if not validate(container, container, key, value):
-            raise Unauthorized('unauthorized access to element %s' % key)
-        except Unauthorized:
-          # if user can't access object try to return default passed
-          if default is not _MARKER:
-            return default
-          raise
-      return value
-    return self._resolveValue(context, path, default, getItem=restrictedGetItem)
-  def unrestrictedResolveValue(self, context=None, path=None, default=_MARKER):
+  def unrestrictedResolveValue(self, context=None, path='', default=_MARKER,
+                               restricted=0):
    """
      Get the value without checking the security.
      This method does not acquire the parent.
    """
-    def unrestrictedGetItem(container, key, default):
-      try:
-        return container[key]
-      except KeyError:
-        if default is not _MARKER:
-          return default
-        else:
-          return None
-    return self._resolveValue(context, path, default, getItem=unrestrictedGetItem)
-  def _resolveValue(self, context, path, default=_MARKER, getItem=None):
-    """
-    Resolve the value without acquire the parent.
-    """
    if isinstance(path, basestring):
      stack = path.split('/')
    else:
      stack = list(path)
    stack.reverse()
-    value = None
    if stack:
-      portal = aq_inner(self.getPortalObject())
-      # It can be passed with the context, so at first, searching from the context.
      if context is None:
+        portal = aq_inner(self.getPortalObject())
        container = portal
      else:
        container = context
-      key = stack.pop()
-      value = getItem(container, key, default)
-      # resolve the value from top to down
+      if restricted:
-      while value is not None and stack:
+        validate = getSecurityManager().validate
+      while stack:
        key = stack.pop()
-        value = getItem(value, key, default)
+        try:
-    else:
+          value = container[key]
-      # When relative_url is empty, returns the context
+        except KeyError:
-      return context
+          LOG('BusinessTemplate', WARNING, 
+              'Could not access object %s' % (path,))
+          if default is _MARKER:
+            raise
+          return default
-    if value is None:
+        if restricted:
+          try:
+            if not validate(container, container, key, value):
+              raise Unauthorized('unauthorized access to element %s' % key)
+          except Unauthorized:
            LOG('BusinessTemplate', WARNING,
-          'Could not access object %s' % path)
+                'access to %s is forbidden' % (path,))
-      if default is not _MARKER:
+          if default is _MARKER:
+            raise
          return default
-      else:
-        raise KeyError
-    return value
+        container = value
+      return value
+    else:
+      return context
 class ObjectTemplateItem(BaseTemplateItem):
  """