launchpad-dev team mailing list archive

Thread
Date

Re: warning: we will soon have much noise in the test results...

To: Julian Edwards <julian.edwards@xxxxxxxxxxxxx>
From: Jonathan Lange <jml@xxxxxxxxxxxxx>
Date: Mon, 26 Jul 2010 11:55:00 +0100
Cc: Robert Collins <robert.collins@xxxxxxxxxxxxx>, Launchpad Community Development Team <launchpad-dev@xxxxxxxxxxxxxxxxxxx>
In-reply-to: <201007261146.04055.julian.edwards@canonical.com>
Sender: jonathan.lange@xxxxxxxxx

On Mon, Jul 26, 2010 at 11:46 AM, Julian Edwards
<julian.edwards@xxxxxxxxxxxxx> wrote:
...
> I've seen a proliferation recently of people writing code like:
>
> class FlangeGrobbler:
>    @classmethod
>    def new(cls, ...)
>
> which completely bypasses the security adapter when returning new objects.
>

It depends on how you do it.

You can declare a class as providing an interface and then register
the class as secured utility for that interface. Grep for
classProvides in the code to see examples.

The problem isn't how you write the class, it's how you invoke new().
You can still write new() as a classmethod and invoke it with
getUtility(IFooSet).new().

jml

Follow ups

Re: warning: we will soon have much noise in the test results...
From: Julian Edwards, 2010-07-26

References

warning: we will soon have much noise in the test results...
From: Abel Deuring, 2010-07-21
Re: warning: we will soon have much noise in the test results...
From: Robert Collins, 2010-07-26
Re: warning: we will soon have much noise in the test results...
From: Jonathan Lange, 2010-07-26
Re: warning: we will soon have much noise in the test results...
From: Julian Edwards, 2010-07-26