Metadata-Version: 2.1
Name: AccessControl
Version: 4.0b5
Summary: Security framework for Zope2.
Home-page: http://pypi.python.org/pypi/AccessControl
Author: Zope Foundation and Contributors
Author-email: zope-dev@zope.org
License: ZPL 2.1
Platform: UNKNOWN
Classifier: Development Status :: 6 - Mature
Classifier: Environment :: Web Environment
Classifier: Framework :: Zope2
Classifier: License :: OSI Approved :: Zope Public License
Classifier: Operating System :: OS Independent
Classifier: Programming Language :: Python
Classifier: Programming Language :: Python :: 2
Classifier: Programming Language :: Python :: 2.7
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.5
Classifier: Programming Language :: Python :: 3.6
Classifier: Programming Language :: Python :: 3.7
Classifier: Programming Language :: Python :: Implementation :: CPython
Requires-Dist: Acquisition
Requires-Dist: AuthEncoding
Requires-Dist: BTrees
Requires-Dist: DateTime
Requires-Dist: ExtensionClass (>=4.2.1)
Requires-Dist: Persistence (>=3.0a3)
Requires-Dist: RestrictedPython (>=4.0a1)
Requires-Dist: six
Requires-Dist: transaction
Requires-Dist: zExceptions
Requires-Dist: zope.component
Requires-Dist: zope.configuration
Requires-Dist: zope.deferredimport
Requires-Dist: zope.interface
Requires-Dist: zope.publisher
Requires-Dist: zope.schema
Requires-Dist: zope.security
Requires-Dist: zope.testing
Requires-Dist: funcsigs; python_version < "3.3"

Overview
========

AccessControl provides a general security framework for use in Zope.


Changelog
=========

For changes before version 3.0, see ``HISTORY.rst``.

4.0b5 (2018-10-05)
------------------

- Add icon for Bootstrap ZMI.

- Fix order of roles returned by
  ``AccessControl.rolemanager.RoleManager.userdefined_roles``.

- Add support for Python 3.7.

- Remove duplicate guard against * imports. (#60)

- Add configuration for `zodbupdate`.

- Remove leftovers from history support dropped in Zope.


4.0b4 (2018-04-16)
------------------

- Drop support for Python 3.4.

- Add ``TaintedBytes`` besides ``TaintedString`` in ``AccessControl.tainted``.
  (#57)


4.0b3 (2018-01-27)
------------------

- Fix deprecation warnings which have shown up when running the tests.


4.0b2 (2018-01-25)
------------------

- Python 2 / 3 import improvements.

- add Appveyor configuration to automate building Windows eggs

- fix for compilers that only support C89 syntax (e.g. on Windows)


4.0b1 (2017-09-15)
------------------

- Security fix: In ``str.format``, check the security for attributes that are
  accessed. (Ported from 2.13).

- Port ``override_container`` context manager here from 2.13.


4.0a7 (2017-05-17)
------------------

- Increase Python 3 compatibility.


4.0a6 (2017-05-12)
------------------

- Make the C extension Python 3 compatible.

- Sanitize and test `RoleManager` role handling.

- Drop `Record` dependency, which now does its own security declaration.


4.0a5 (2017-05-05)
------------------

- Add support for Python 3.4 up to 3.6. (only Python implementation)

- Depend on RestrictedPython >= 4.0.


4.0a4 (2017-02-01)
------------------

- Use `@implementer` class decorator.

- Remove ``AccessControl.Permission.name_trans`` to ease Python 3 migration.
  Use ``AccessControl.Permission.getPermissionIdentifier()`` instead.

4.0a3 (2016-08-05)
------------------

- Extract ``.AuthEncoding`` to its own package for reuse.

4.0a2 (2016-08-01)
------------------

- Declare missing dependency on BTrees.

4.0a1 (2016-07-21)
------------------

- Modernised C code in preparation of porting to Python 3.

- #16: Fixed permission handling by avoiding column and row numbers as
  identifiers for permissions and roles.

3.0.12 (2015-12-21)
-------------------

- Avoid acquiring ``access`` from module wrapped by
  ``SecurityInfo._ModuleSecurityInfo``.  See:
  https://github.com/zopefoundation/AccessControl/issues/12

3.0.11 (2014-11-02)
-------------------

- Harden test fix for machines that do not define `localhost`.

3.0.10 (2014-11-02)
-------------------

- Test fix for machines that do not define `localhost`.

3.0.9 (2014-08-08)
------------------

- GitHub #6: Do not pass SecurityInfo instance itself to declarePublic/declarePrivate
  when using the public/private decorator. This fixes ``Conflicting security declarations``
  warnings on Zope startup.

- LP #1248529: Leave existing security manager in place inside
  ``RoleManager.manage_getUserRolesAndPermissions``.

3.0.8 (2013-07-16)
------------------

- LP #1169923:  ensure initialization of shared ``ImplPython`` state
  (used by ``ImplC``) when using the "C" security policy.  Thanks to
  Arnaud Fontaine for the patch.

3.0.7 (2013-05-14)
------------------

- Remove long-deprecated 'Shared' roles support (pre-dates Zope, never
  used by Zope itself)

- Prevent infinite loop when looking up local roles in an acquisition chain
  with cycles.

3.0.6 (2012-10-31)
------------------

- LP #1071067: Use a stronger random number generator and a constant time
  comparison function.

3.0.5 (2012-10-21)
------------------

- LP #966101: Recognize special `zope2.Private` permission in ZCML
  role directive.

3.0.4 (2012-09-09)
------------------

- LP #1047318: Tighten import restrictions for restricted code.

3.0.3 (2012-08-23)
------------------

- Fix a bug in ZopeSecurityPolicy.py. Global variable `rolesForPermissionOn`
  could be overridden if `__role__` had custom rolesForPermissionOn.

3.0.2 (2012-06-22)
------------------

- Add Anonymous as a default role for Public permission.

3.0.1 (2012-05-24)
------------------

- Fix tests under Python 2.6.

3.0 (2012-05-12)
----------------

- Added decorators for public, private and protected security declarations.

- Update tests to take advantage of automatic test suite discovery.


