When this directive is used, authorization information is obtained from ACL objects attached to resource objects.
None.
1 | <aclauthorizationpolicy/>
|
You may create an instance of the pyramid.authorization.ACLAuthorizationPolicy and pass it to the pyramid.config.Configurator constructor as the authorization_policy argument during initial application configuration.
See also Built-In Authorization Policy ZCML Directives and security_chapter.