Warning

This version is valid for an outdated version of Plone: 3.X. Use the Version drop-down above to go to the Plone 5 (current stable) or Plone 4 versions

Security¶

Zope provides various built-in security facilities

User - role - permission three layer security model
Security declarations in ZCML for views, adapters, etc.
RestrictedPython to evaluate sandboxed code

Permissions
Available permissions in Plone
Standard permissions and roles
Custom permissions
Cross-Site Request Forgery (CSRF)
Local roles
Dynamic roles
Sandboxing and RestrictedPython
Using SELinux with Plone