Hi, have a problem with Zope 2.3.3 and roles defined by a product X and the role 'Authenticated' which I added to be Zope 2.4.4 compatible. A product defines a roles 'Author' and the permissions are set as neccessary for this product. I also have LDAPUserFolder installed. The logged on user has the role 'Author' and 'Authenticated'. I detected now that I have to duplicate all permissions for role 'Author' over to role 'Authenticated' to make the product X working right. Has anybody detected a similar behavior of Zope 2.3.3 ??? It is totally unbelievable, but the only thing I can guess is 'Auth' enticated or 'Auth'or ? Is there probably a ZODB basic problame with similar role names. tapping in the dark. Regards, Dirk
Dirk Datzert writes:
... A product defines a roles 'Author' and the permissions are set as neccessary for this product.
I also have LDAPUserFolder installed. The logged on user has the role 'Author' and 'Authenticated'. I detected now that I have to duplicate all permissions for role 'Author' over to role 'Authenticated' to make the product X working right. ... It is totally unbelievable, but the only thing I can guess is 'Auth' enticated or 'Auth'or ? Is there probably a ZODB basic problame with similar role names. This is very unlikely.
Much more likely is, that your user does not get the "Author" role, even when you think it does. Dieter
Hi Dieter, I have displayed the roles AUTHENTICATED_USER and looked into the LDAPUserFolder / LDAPRoleTwiddler cache, which roles the user had and the user had the roles Author and Authenticated, which should be correct. But the permissions resulting on that roles are not what they should. I have displayed the permissions for the affected object via a script named dumpPerm I found in the internet and the permissions where set right. Regards, Dirk Dieter Maurer schrieb:
Dirk Datzert writes:
... A product defines a roles 'Author' and the permissions are set as neccessary for this product.
I also have LDAPUserFolder installed. The logged on user has the role 'Author' and 'Authenticated'. I detected now that I have to duplicate all permissions for role 'Author' over to role 'Authenticated' to make the product X working right. ... It is totally unbelievable, but the only thing I can guess is 'Auth' enticated or 'Auth'or ? Is there probably a ZODB basic problame with similar role names. This is very unlikely.
Much more likely is, that your user does not get the "Author" role, even when you think it does.
Dieter
Hi Dieter, you were right but in a way you will not expect: I digged into User.py / allowed and their are the user_roles checked against the object_roles, and in this function the 'Author' is not user_roles. But in the AUTHENTICATED_USER / LDAPRoleTwiddler the roles are displayed correct. Regards, Dirk Dieter Maurer schrieb:
Dirk Datzert writes:
... A product defines a roles 'Author' and the permissions are set as neccessary for this product.
I also have LDAPUserFolder installed. The logged on user has the role 'Author' and 'Authenticated'. I detected now that I have to duplicate all permissions for role 'Author' over to role 'Authenticated' to make the product X working right. ... It is totally unbelievable, but the only thing I can guess is 'Auth' enticated or 'Auth'or ? Is there probably a ZODB basic problame with similar role names. This is very unlikely.
Much more likely is, that your user does not get the "Author" role, even when you think it does.
Dieter
participants (2)
-
Dieter Maurer -
Dirk Datzert