[Springpython-developer] A few warning about trunk's copy of petclinic

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

There are some outstanding issues in PetClinic to be aware of, mainly
due to my working on the web security parts.

1. There is bug in the "Owner" voter. It hasn't been properly
converted over to the WSGI format. If you login as "vet1", everything
works like a champ. If you login as "jblack", search for owners, and
try to drill down on any of them, you will get an exception about a
buggy line of code.

2. applicationContext.xml/petclinic.py is the only version of
petclinic that has the new security parts added in. I want to get that
stuff shook out and working perfectly before pushing out the mods to
the other version of petclinic.

3. I added one paste component to PetClinic, EvalException. It
provides a nice view of exceptions. I use Ubuntu Linux, and all I had
to do was:

% sudo apt-get install python-paste

It installed version 0.9.8. You can either install this yourself, or
pull out the "exceptionFilter" from "filterChainProxy".

I haven't necessarily decided to keep it there permanently. Don't want
to throw unnecessary dependencies on users, but it is handy for the
time being.

4. One of the next immediate things I am planning on implementing
(after fixing [1] above) is the ExceptionTranslationFilter, so that
Authentication Failure will redirect the user to a login page, and
Access Denied will redirect the user to an "Access Denied" page. The
mechanism I have right now is too clunky.

Greg
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFF2oXNWo5A/EaBZk4RAuJ3AJsHiSXpI/mPnpoVM04U6HgeL0eDBwCggSmO
GNf7AHjBPTp9Wqmaj709SMk=
=UiMA
-----END PGP SIGNATURE-----