[Twisted-web] Finer-Grained Security System for Twisted Web/Nevow?
Drew Perttula
drewp at bigasterisk.com
Mon Apr 20 00:44:49 EDT 2009
Jeff Rush wrote:
> I'm thinking I'll have to write something like decorators for page resources
> that front-end the locateChild method (for access control over traversal),
>
> and perhaps the renderHTTP method (for access control over page delivery) with
> permissions checking logic.
I did openid logins as a mixin class that replaces locateChild:
http://bigasterisk.com/darcs/?r=exchangeMeeting;a=headblob;f=/nevowopenid.py
Usage is like this:
class Main(WithOpenid, rend.Page):
docFactory = loaders.xmlfile("main.html")
..replace verify() and use self.identity..
More information about the Twisted-web
mailing list