launchpad-dev team mailing list archive

Thread
Date

Re: using PermissiveSecurityPolicy when serving private xmlrpc requests

To: Michael Hudson <michael.hudson@xxxxxxxxxxxxx>
From: Bjorn Tillenius <bjorn@xxxxxxxxxxxxx>
Date: Tue, 23 Feb 2010 11:41:03 +0200
Cc: Launchpad Community Development Team <launchpad-dev@xxxxxxxxxxxxxxxxxxx>
In-reply-to: <4B83600F.4010700@canonical.com>
User-agent: Mutt/1.5.20 (2009-06-14)

On Tue, Feb 23, 2010 at 05:56:47PM +1300, Michael Hudson wrote:
> Hi there.
> 
> Today's hacking has involved working on methods implemented by the
> private xml-rpc server.  If you've done this before, you'll know that it
> can be a bit annoying as calls to this server are not authenticated, so
> you end up having to weaken the security declarations a whole lot or use
> removeSecurityProxy liberally, neither of which feels very nice (I have
> complained about this before, I think).

Can you give a list of all the methods that the private XML-RPC server
currently implements?


-- 
Björn Tillenius | https://launchpad.net/~bjornt

Follow ups

Re: using PermissiveSecurityPolicy when serving private xmlrpc requests
From: Michael Hudson, 2010-02-24

References

using PermissiveSecurityPolicy when serving private xmlrpc requests
From: Michael Hudson, 2010-02-23