Hi, thanks for the reply. I did what you asked and the error log produced these messages: Unauthorized: <strong>You are not authorized to access this resource.</strong><p> Username and password are not correct. Unauthorized: You are not allowed to access 'sql_select' in this context the sql_select error is because my .metadata file is denying requests to it for users with a certain role. no idea where to go from here i'm afraid cheers, Paul On 11/18/05, Dieter Maurer <dieter@handshake.de> wrote:
Paul Hendrick wrote at 2005-11-16 17:28 +0000:
I'm using CookieCrumbler on a project which sits in / on one server, and /project in another. I'd like to secure a part of the site through *.metadata files so that users of a certain role can't access it. this is done and works well. however, when they try to access a part of the site which is secured, they're: a- given a log in popup prompt which they don't have the details for.
What is "a log in popup prompt"? Do you mean the browser login dialog?
Usually, you should get the cookie crumblers login form. If you get instead a browser login dialog, this means that something went wrong. Often, it means that the URL located object itself was not protected but it accesses a protected object.
Reconfigure your "error_log" object (ZMI, "Root Folder") to not ignore "Unauthorized" exceptions. Reproduce the error and look what the "error_log" might tell you about it.
-- Dieter
-- cheers, paul web : http://www.currentlyfabulous.com/blog