hooks/security.py
Tue, 14 Jan 2014 11:14:41 +0100 Aurelien Campeas [hooks/security] silence yams warning (closes #3440707)
Thu, 16 Jan 2014 13:50:26 +0100 Julien Cristau [security] Add comment to check_entity_attributes shortcut
Thu, 24 Oct 2013 13:15:53 +0200 Aurelien Campeas [hooks/security] provide attribute "add" permission
Fri, 04 Oct 2013 17:05:49 +0200 Aurelien Campeas [hooks/security] Defer entity permission checks to an Operation.
Wed, 03 Jul 2013 14:16:21 +0200 Aurelien Campeas [hooks/security] Streamline attributes default permission check. stable
Thu, 16 Feb 2012 14:15:37 +0100 Sylvain Thénault backport stable
Thu, 16 Feb 2012 14:14:52 +0100 Sylvain Thénault [spelling] fix dictionnary -> dictionary typo stable
Mon, 23 Jan 2012 13:25:02 +0100 Sylvain Thénault [vreg] move base registry implementation to logilab.common. Closes #1916014
Sat, 09 Oct 2010 00:05:50 +0200 Sylvain Thénault [hook/operation] nicer api to achieve same result as set_operation, as described in #1253630
Wed, 25 Aug 2010 10:29:18 +0200 Sylvain Thénault [session] cleanup hook / operation / entity edition api
Thu, 01 Jul 2010 17:06:37 +0200 Sylvain Thénault backport stable
Thu, 01 Jul 2010 09:23:39 +0200 Sylvain Thénault [security] use set_operation for relation permission checking operation stable
Mon, 21 Jun 2010 15:34:46 +0200 Sylvain Thénault backport stable
Mon, 21 Jun 2010 15:32:26 +0200 Sylvain Thénault [transaction w/ separated web/repo processes] the dbapi should explicitly specify a transaction id to avoid confusion when web server / repository run in separated processes stable
Mon, 07 Jun 2010 13:31:46 +0200 Sylvain Thénault [security hooks] fix bad merge
Mon, 07 Jun 2010 13:22:24 +0200 Sylvain Thénault backport stable
Fri, 04 Jun 2010 13:09:12 +0200 Sylvain Thénault on entity creation, accept attributes without any update access stable
Tue, 01 Jun 2010 17:06:41 +0200 Pierre-Yves David [web test] Add a CubicWebServerTC class to run test with a cw web serveur available.
Thu, 20 May 2010 20:50:00 +0200 Sylvain Thénault [entity] continue cleanup of Entity/AnyEntity namespace
Fri, 30 Apr 2010 18:24:29 +0200 Aurelien Campeas [hooks/...] fix previous commit stable
Fri, 30 Apr 2010 16:39:50 +0200 Aurelien Campeas [hooks/operations] use set_operations for three ops (huge gains for massive imports) stable
Wed, 28 Apr 2010 12:15:52 +0200 Sylvain Thénault replace logilab-common by CubicWeb in disclaimer oldstable
Wed, 28 Apr 2010 10:06:01 +0200 Sylvain Thénault proper licensing information (LGPL-2.1). Hope I get it right this time. stable
Wed, 24 Mar 2010 15:22:01 +0100 Sylvain Thénault don't update dontcheck until everything went fine: stable
Mon, 22 Mar 2010 17:58:03 +0100 Sylvain Thénault fix security issue introduced by 4967:04543ed0bbdc: attributes explicitly set by hooks should not be checked by security hooks
Tue, 09 Mar 2010 08:59:43 +0100 Sylvain Thénault [repo] enhanced security handling: deprecates unsafe_execute, in favor of explicit read/write security control using the `enabled_security` context manager. Also code executed on the repository side is now unsafe by default.
Mon, 15 Feb 2010 15:14:27 +0100 Sylvain Thénault [security] we should save back edited_attributes in case of multiple modification of an entity during the same transaction stable
Mon, 15 Feb 2010 15:10:25 +0100 Sylvain Thénault follow yams api change: attributes permissions are now defined for stable
Mon, 18 Jan 2010 19:21:30 +0100 Sylvain Thénault backport stable branch
Tue, 22 Dec 2009 19:27:26 +0100 Sylvain Thénault fix bad merge
less more (0) -30 tip