Jimmie Houchin wrote:
I haven't installed Zope yet. I have been reading the documentation and posts here. There have been a couple of post by Michael Grinder which have not been answered and concern me. Maybe they have not been answered because there isn't a good solution. If that is the case I prefer to know.
If you've noticed the Zope traffic, I hope you can appeciate that it might take a while to get to everyones questions.
Understood. And I think that it is wonderful. The Zope list is now full of life. :) In rereading my statements, maybe I phrased my above statements poorly. I didn't mean to imply that the lack of answers concerns me, but that the question (because of similar situations) and therefore what the answer would be, concerns me. I was not trying to be harsh to the list, but may have come across as such. If so, my apologies.
For those of us who have to use a webhosting service we are at the mercy of what they (the webhost) will permit and what is required configuration wise by Zope.
Are there any options for configuring for Authorization that can be done by those of us who use a webhosting service?
Unfortunately, most web servers make it hard for web applications to do authentication. We worked out a way to trick Apache into doing it that worked with some versions of Apache and not others. It hasn't helped that the key piece, mod_rewrite has changed quite a bit from rev to rev. :( I think a number of people are working on trying to give helpful advice.
Keep in mind, however, that Zope does provide support for letting an HTTP server do authentication and letting Zope do authorization. You have to get the web server administrator to set up the user ids and passwords for you and to set a couple of script aliases. Then Zope uses the REMOTE_USER information passed from the web server. This is described in the Bobo documentation, which is being converted to Zope documentation and was also described on Bobo list.
I hope that the Apache my webhost uses, 1.2.6 on RH 4.2 is one that is cooperative or that my webhost has already configured it for providing Authentication. :) I thank all here who provide assistance. For much of this is beyond my current scope of understanding. Thanks again. Jimmie Houchin