http://snippets.dzone.com/posts Mon, 18 Aug 2008 07:16:13 GMT DZone Snippets: zope code http://snippets.dzone.com/posts/show/484 If you need to be sure that a user can view an object, you need to check the View permission not only on the object but also all of its parents. To do this, I slightly modified the script at http://zopelabs.com/cookbook/1018022911 so that it uses the context object and specified the View permission. <br /> <br />Create a Python script in your acquisition path (I used portal_skins/custom) named can_view and paste in this code: <br /><code>permission = "View" <br />try: <br /> object=context <br /> if not object.acquiredRolesAreUsedBy( permission ): <br /> for p in object.rolesOfPermission( permission ): <br /> if p['selected']: <br /> if p['name'] in user.getRoles(): <br /> return 1 <br /> else: <br /> return 1 <br />except: <br /> pass <br />return 0 <br /></code>Then you can check the permission in TAL like this: <br /> <br /><code> <br /><div tal:condition="some_object/can_view"> <br /> ... <br /></div> Tue, 19 Jul 2005 22:41:19 GMT http://snippets.dzone.com/posts/show/484 georgehotelling (George Hotelling)