megrok.kss broken with new grok security policy
Bug #309567 reported by
Uli Fouquet
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| grok |
Fix Released
|
Low
|
Uli Fouquet | ||
Bug Description
megrok.kss fails with ForbiddenAttribute when following the example on
http://
if one of the security patched versions of Grok is working in background. This also enourages users to use unsafe versions of Grok and should be fixed.
The problem occurs, because megrok.kss.KSS is a view class not derived from grok.View. It could be fixed easily with upcoming releases of Grok where the Grok publisher would also check for IGrokSecurityView, but this is currently not available and megrok.kss should also work with current security-patched versions like grok 0.14.1.
| Changed in grok: | |
| assignee: | nobody → uli-gnufix |
| importance: | Undecided → Low |
| status: | New → In Progress |
| Changed in grok: | |
| status: | In Progress → Fix Committed |
| Changed in grok: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
