strip whitespace from Role names so "User, Admin" will work

author richard <richard@57a73879-2fb5-44c3-a270-3262357dd7e2>

Sat, 10 May 2003 23:13:10 +0000 (23:13 +0000)

committer richard <richard@57a73879-2fb5-44c3-a270-3262357dd7e2>

Sat, 10 May 2003 23:13:10 +0000 (23:13 +0000)
author richard <richard@57a73879-2fb5-44c3-a270-3262357dd7e2>
Sat, 10 May 2003 23:13:10 +0000 (23:13 +0000)
committer richard <richard@57a73879-2fb5-44c3-a270-3262357dd7e2>
Sat, 10 May 2003 23:13:10 +0000 (23:13 +0000)
diff --git a/CHANGES.txt b/CHANGES.txt

index 0ff3c651c895a59168999c466b73791187cc11de..bb7e78a4b57097f12716a6d4968a3f0b8876aa50 100644 (file)
--- a/CHANGES.txt
+++ b/CHANGES.txt
@@ -1,6 +1,11 @@
  This file contains the changes to the Roundup system over time. The entries
  are given with the most recent entry first.
  
+2003-??-?? 0.6.0
+Fixed:
+- strip whitespace from Role names so "User, Admin" will work
+
+
  2003-05-09 0.6.0b1
  Removed:
  - having served its purpose as a template for other relational database
diff --git a/roundup/security.py b/roundup/security.py

index 3c87c48cc93263466fcac678cc1321513c6da103..241715d80b356d64ac2ff4ddd17bcdc1213f6a4f 100644 (file)
--- a/roundup/security.py
+++ b/roundup/security.py
@@ -98,7 +98,7 @@ class Security:
          roles = self.db.user.get(userid, 'roles')
          if roles is None:
              return 0
-        for rolename in [x.lower() for x in roles.split(',')]:
+        for rolename in [x.lower().strip() for x in roles.split(',')]:
              if not rolename or not self.role.has_key(rolename):
                  continue
              # for each of the user's Roles, check the permissions
author	richard <richard@57a73879-2fb5-44c3-a270-3262357dd7e2>
	Sat, 10 May 2003 23:13:10 +0000 (23:13 +0000)
committer	richard <richard@57a73879-2fb5-44c3-a270-3262357dd7e2>
	Sat, 10 May 2003 23:13:10 +0000 (23:13 +0000)
CHANGES.txt		patch \| blob \| history
roundup/security.py		patch \| blob \| history