Components in permission_policies should be always loaded
|Reported by:||Mitar||Owned by:||rjollos|
|Cc:||mmitar@…, leho@…, dkg@…, ethan.jucovy@…, shoffmann, jomae|
Loading of all permission_policies is enforced by raising an exception if any of the named Components are not found. request_filters, action_controllers and any plugin configuration options utilizing OrderedExtensionOption will raise an exception if one of the named Components is not found.
OrderedExtensionsOption raises a ConfigurationError if one of the named implementations of the interface is not found.
Trac should enforce loading of all components in permission_policies and restrain from starting if this is not possible. Otherwise it is possible that some component does not load (because of some system upgrade or any other Python error) and some security enforcing is turned off. This could have grave security implications.
More about this topic in this ticket.
Change History (27)
comment:2 follow-up: ↓ 6 Changed 3 years ago by rblank
- Keywords permission added
- Milestone set to next-minor-0.12.x
Changed 15 months ago by Steven R. Loomis <srl@…>
Changed 7 months ago by rjollos
comment:13 Changed 7 months ago by rjollos
- Cc ryano@… removed
comment:18 Changed 6 months ago by rjollos
- Milestone changed from next-minor-0.12.x to 1.0.2
- Owner set to rjollos
- Status changed from new to assigned