diff options
| author | Chris McDonough <chrism@agendaless.com> | 2008-09-21 03:46:26 +0000 |
|---|---|---|
| committer | Chris McDonough <chrism@agendaless.com> | 2008-09-21 03:46:26 +0000 |
| commit | 2a06f4b2475858f2631fb0539136e4cc24409776 (patch) | |
| tree | 8d0d4bec70e6fadc228fd83bb9865c54395ac1f1 /docs | |
| parent | 64ea2e288d7e6f47075269994319b9331dd09391 (diff) | |
| download | pyramid-2a06f4b2475858f2631fb0539136e4cc24409776.tar.gz pyramid-2a06f4b2475858f2631fb0539136e4cc24409776.tar.bz2 pyramid-2a06f4b2475858f2631fb0539136e4cc24409776.zip | |
Add docs about cataloging.
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/tutorials/cmf/catalog.rst | 73 | ||||
| -rw-r--r-- | docs/tutorials/cmf/index.rst | 2 |
2 files changed, 74 insertions, 1 deletions
diff --git a/docs/tutorials/cmf/catalog.rst b/docs/tutorials/cmf/catalog.rst new file mode 100644 index 000000000..76e01a2e5 --- /dev/null +++ b/docs/tutorials/cmf/catalog.rst @@ -0,0 +1,73 @@ +.. _catalog_chapter: + +======= +Catalog +======= + +The main feature of the CMF catalog is that it filters search results +from the Zope 2 "catalog" based on the requesting user's ability to +view a particular cataloged object. + +:mod:`repoze.bfg` itself has no cataloging facility, but an addon +package named :term:`repoze.catalog` offers similar functionality. + +Creating an Allowed Index +------------------------- + +In CMF, a catalog index named ``getAllowedRolesAndUsers`` along with +application indexing code allows for filtered search results. It's +reasonably easy to reproduce this pattern using some custom code. + +Creating The ``allowed`` Index +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +Here's some code which creates an ``allowed`` index for use in a +``repoze.catalog`` catalog:: + + from repoze.bfg.security import principals_allowed_by_permission + from repoze.catalog.catalog import CatalogKeywordIndex + from repoze.catalog.catalog import Catalog + + class Allowed: + def __init__(self, permission): + self.permission = permission + + def __call__(self, context, default): + principals = principals_allowed_by_permission(context, + self.permission) + return principals + + def make_allowed_index(permission='View'): + index = CatalogKeywordIndex(Allowed(permission)) + return index + + index = make_allowed_index() + catalog = Catalog() + catalog['allowed'] = index + +When you index an item, the allowed index will be populated with all +the principal ids which have the 'View' permission. + +Using the ``allowed`` Index +~~~~~~~~~~~~~~~~~~~~~~~~~~~ + +Here's how you might use the ``allowed`` index within a query:: + + from repoze.bfg.security import effective_principals + principals = effective_principals(request) + catalog.searchResults(allowed={'operator':'or', 'query':principals}) + +The above query will return all document ids that the current user has +the 'View' permission against. Add other indexes to the query to get +a useful result. + +See the `repoze.catalog package +<http://svn.repoze.org/repoze.catalog/trunk>`_ for more information. + + + + + + + + diff --git a/docs/tutorials/cmf/index.rst b/docs/tutorials/cmf/index.rst index 76ba6ae0f..b3ece7f0e 100644 --- a/docs/tutorials/cmf/index.rst +++ b/docs/tutorials/cmf/index.rst @@ -11,7 +11,6 @@ Missing: templates.rst forms.rst - cataloging.rst workflow.rst skins.rst actions.rst @@ -24,4 +23,5 @@ Missing: :maxdepth: 2 content.rst + catalog.rst |