[gen] Bugfix: slave groups; bugfix: security check for pod fields; security bugfix for pod fields: write access to the field is required for performing any freeze-related action; migration to Appy 0.9.0: dump frozen pod fields on disk; repaired test system for Appy 0.9.0; more explicit error message when using, on some field, a specific write or read permission that is not used in the workflow.

2014-05-14 15:10:41 +02:00 · 2014-05-14 15:10:41 +02:00 · b4e6333472
commit b4e6333472
parent 61598b91f7
9 changed files with 66 additions and 39 deletions
--- a/gen/mixins/init.py
+++ b/gen/mixins/init.py
@ -1201,6 +1201,11 @@ class BaseMixin:
        '''Gets, according to the workflow, the roles that are currently granted
           p_permission on this object.'''
        state = self.State(name=False)
+        if permission not in state.permissions:
+            wf = self.getWorkflow().__name__
+            raise Exception('Permission "%s" not in permissions dict for ' \
+                            'state %s.%s' % \
+                            (permission, wf, self.State(name=True)))
        roles = state.permissions[permission]
        if roles: return [role.name for role in roles]
        return ()