X-Git-Url: https://git.tokkee.org/?p=roundup.git;a=blobdiff_plain;f=roundup%2Fsecurity.py;h=3dfa8bd442c13ec068ca90589a10e55fc9f5b9fa;hp=6138e271a1ab430ddb9f01d7bf084ada4c3d75b4;hb=e4e6bd39dd9b34aad8ee06bade09376ea1683846;hpb=d80196b6ae3019bf7c78a2f70298386336648166

diff --git a/roundup/security.py b/roundup/security.py
index 6138e27..3dfa8bd 100644
--- a/roundup/security.py
+++ b/roundup/security.py
@@ -162,12 +162,9 @@ class Security:
            Note that this functionality is actually implemented by the
            Permission.test() method.
         '''
-        roles = self.db.user.get(userid, 'roles')
-        if roles is None:
-            return 0
         if itemid and classname is None:
             raise ValueError, 'classname must accompany itemid'
-        for rolename in [x.lower().strip() for x in roles.split(',')]:
+        for rolename in self.db.user.get_roles(userid):
             if not rolename or not self.role.has_key(rolename):
                 continue
             # for each of the user's Roles, check the permissions