Code review comment for lp:~edwin-grubbs/launchpad/bug-451208-subscribing-reveals-email
Revision history for this message
| Edwin Grubbs (edwin-grubbs) wrote | # |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Summary
-------
Registered all the Launchpad vocabularies with <securedutility>
instead of <utility> so that it will not be possible to get
a db object without a security proxy.
This required an <allow> block on each utility to allow
access to the __call__ method on the vocabulary class (IVocabularyFac
The vocabulary objects required a <class> directive with
<allow interface=
Some vocabulary factories were actually functions, such as
BugNominatableS
BugNominatableP
objects.
Implementation details
-------
New tests:
lib/
lib/
Indicate in the picker widget when email address is hidden.
lib/
Some vocabularies need to get the IBinaryAndSourc
attribute from objects that were passed in from widgets, so they
are already security proxied.
lib/
Fixed tests that broke since they were accessing methods that
should not be exposed through the security proxy.
lib/
lib/
lib/
Since vocabularies must be registered with a name parameter,
the <securedutility> directive needed to be updated to pass
this along to the underlying <utility>.
lib/
Added BugNominatableD
BugNominatableP
lib/
ICountableIterator defines a __getitem__ method that provides
the __getslice__ functionality.
lib/
Somewhat interesting zcml changes:
lib/
lib/
The changes for SimpleVocabulary, SimpleTerm, and
BugNominatable*
many changes in this file.
lib/
TimezoneNameVoc
SimpleVocabulary, so it doesn't need any <class> directives.
lib/
Uninteresting bulk changes to use <securedutility>:
lib/
lib/
Tests
-----
./bin/test -vv -t 'test_vocabular
Demo and Q/A
------------
* Open https:/
* Click on "Choose" to bring up the picker.
* Search for "name12".
* The email address should be hidden.