Fixed problem with authentication of methods that use a plain

__roles__ rather than a PermissionRoles.

Fixed problem with authentication of methods that use a plain
__roles__ rather than a PermissionRoles.
5562782e · Jim Fulton · 1d8cad98 · 5562782e
Commit 5562782e authored May 22, 1998 by Jim Fulton
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 1 deletion

lib/python/AccessControl/User.py lib/python/AccessControl/User.py +5 -1

No files found.
--- a/lib/python/AccessControl/User.py
+++ b/lib/python/AccessControl/User.py
 """Access control package"""

-__version__='$Revision: 1.50 $'[11:-2]
+__version__='$Revision: 1.51 $'[11:-2]

 import Globals, App.Undo, socket, regex
 from PersistentMapping import PersistentMapping
@@ -65,6 +65,10 @@ class User(Implicit, Persistent):
 	    if role in usr_roles:
                if (hasattr(self,'aq_parent') and
                    hasattr(self.aq_parent,'aq_parent')):
+                    if (not hasattr(parent, 'aq_inContextOf') and
+                        hasattr(parent, 'im_self')):
+                        # This is a method, grab it's self.
+                        parent=parent.im_self
                    if not parent.aq_inContextOf(self.aq_parent.aq_parent,1):
                        if 'Shared' in roles:
                            # Damn, old role setting. Waaa