Hi! I'm trying to produce a web site with user authentication, and was looking for something more customizable than the standard user authentication mechanism provided by Zope. My first step was look in the Zope page, making a search on the term 'authentication'. I found three products: UserDB, GenericUserFolder, and LoginManager. Reading the page at the UserDB I found the bellow: "Update (10/30/99): Zen has posted a product that has more functionality than UserDB, called GenericUserFolder. " Well, looks like the GenericUserFolder is more advanced. So I go to its page. In it there are another observation: "Deprecated This product is being deprecated in favor of the LoginManager. LoginManager is what I like to believe that GUF would have been if I didn't have to write it in a hurry." Well, the next step is going to the LoginManager and try to figure out how to install it and put it in my web site. I get the package (I'm using the Linux version of Zope, in a Conectiva Linux 4.2 - like Red Hat 6.x -, installed from the rpm packages found in the Zope site), and, after some troubles to make ZPatterns fully functional, I get it installed. So now? No HOWTO explaining how to put it to run. Well, go to the mailing list, and search old messages. No one helps me... I'm looking for a sequence of steps needed to configure and use the LoginManager. How to add users? How to add local roles? How to integrate it whith LDAP (not for now, but in the future)? How to use a RDBMS server, like PostgreSQL, to store the accounts (in case I cannot put LDAP up an running)? I'm not a Python programmer, and I have a limited knowledge of Zope and DTML, and my english is only better than your portuguese... TIA -- César A. K. Grossmann ckant@usa.net http://members.xoom.com/ckant/
I have an installation of Zope as PCGI using Apache to communicate using SSL connections. When Apache starts a CGI (and PCGI) programs, it sets many SSL environment variables, including e-mail and user id. I would like to use this kind of information to automaticaly authenticate the user, without requesting user name and password. Has anybody tried to do something like this? Alexandre.
On Tue, 13 Jun 2000, Alexandre A. Drummond Barroso wrote:
I have an installation of Zope as PCGI using Apache to communicate using SSL connections. When Apache starts a CGI (and PCGI) programs, it sets many SSL environment variables, including e-mail and user id. I would like to use this kind of information to automaticaly authenticate the user, without requesting user name and password. Has anybody tried to do something like this?
If its setting the REMOTE_USER environment variable, then Zope does this out of the box with a little configuration - see doc/WEBSERVER.txt in your Zope installation (search for 'Zope authentication with existing web servers') -- Stuart Bishop Work: zen@cs.rmit.edu.au Senior Systems Alchemist Play: zen@shangri-la.dropbear.id.au Computer Science, RMIT University
Stuart 'Zen' Bishop wrote:
On Tue, 13 Jun 2000, Alexandre A. Drummond Barroso wrote:
I have an installation of Zope as PCGI using Apache to communicate using SSL connections. When Apache starts a CGI (and PCGI) programs, it sets many SSL environment variables, including e-mail and user id. I would like to use this kind of information to automaticaly authenticate the user, without requesting user name and password. Has anybody tried to do something like this?
There's a product that does this included with m2Crypto: http://www.post1.com/home/ngps/m2/ -- Itamar S.T. itamar@maxnm.com Fingerprint = D365 7BE8 B81E 2B18 6534 025E D0E7 92DB E441 411C
----- Original Message ----- From: "Cesar A. K. Grossmann" <cesar@rotnet.com.br> To: <zope@zope.org> Sent: Tuesday, June 13, 2000 7:34 PM Subject: [Zope] LoginManager HOWTO?
I'm looking for a sequence of steps needed to configure and use the LoginManager. How to add users? How to add local roles? How to integrate it whith LDAP (not for now, but in the future)? How to use a RDBMS server, like PostgreSQL, to store the accounts (in case I cannot put LDAP up an running)?
I haven't actually announced this outside of the PTK list, because this stuff is still subject to change. But, the Membership Product can give you some pointers on getting a LoginManager running. http://www.zope.org/Members/tazzzzz/Membership Make sure you have PythonMethods installed. After you set up a Membership system, you'll end up with a functional, configured LoginManager. The reason I warn people that future versions may not be compatible is that the user objects that are created in the current Membership product may have their data stored differently in the next version, and it's probably not worth writing conversion code at this point. I don't believe they are available at this time, but it won't be long before there are both LDAP and SQL UserSources for LoginManager, I'm sure. Once this happens, all you need to do is install those UserSources and your LoginManager will try to authenticate to them. Kevin
On Tue, 13 Jun 2000, Cesar A. K. Grossmann wrote:
"Update (10/30/99): Zen has posted a product that has more functionality than UserDB, called GenericUserFolder. "
Well, looks like the GenericUserFolder is more advanced. So I go to its page. In it there are another observation:
But do you want advanced? If you just want to store your authentication information, UserDB is just fine - moving to GenericUserFolder in this case may just cause you troubles, as more advanced also means more complicated. UserDB is a simple user adaptor that is all you need if you are storing your usernames, passwords and roles etc. in the one central RDBMS. GenericUserFolder is what you have to move to if you are in a more peculiar environment or want to use Radius authentication. LoginManager supports all the functionality of GenericUserFolder, but is still in developmental stages and probably not recommended for production sites but may be the perfect choice if you don't plan going production right now.
I'm looking for a sequence of steps needed to configure and use the LoginManager. How to add users? How to add local roles? How to integrate it whith LDAP (not for now, but in the future)? How to use a RDBMS server, like PostgreSQL, to store the accounts (in case I cannot put LDAP up an running)?
Sounds like you would be happiest with UserDB for now and migrating to the LDAP Adaptor in the future. Or if you wait long enough before migrating to LDAP, you will probably find LoginManager supports LDAP out of the box with no coding.
I'm not a Python programmer, and I have a limited knowledge of Zope and DTML, and my english is only better than your portuguese...
Both GenericUserFolder and the current incarnation of LoginManager require fairly in depth DTML knowledge unless you follow a cheat sheet (check the HOWTO's on zope.org). -- Stuart Bishop Work: zen@cs.rmit.edu.au Senior Systems Alchemist Play: zen@shangri-la.dropbear.id.au Computer Science, RMIT University
Stuart 'Zen' Bishop wrote:
But do you want advanced? If you just want to store your authentication information, UserDB is just fine - moving to GenericUserFolder in this case may just cause you troubles, as more advanced also means more complicated.
I need to provide a logon screen more informative than the default dialog box. Can I do it with UserDB (I have tried, and have not found any information about it). I have tried it and have to figure out by myself the table and column names and types. I have created one Gadfly connection (only for testing purposed), and created the tabel users, as bellow: create table users ( username varchar, password varchar, domains varchar, roles varchar ) I suppose it is correct, but I'm not sure (it worked).
GenericUserFolder is what you have to move to if you are in a more peculiar environment or want to use Radius authentication.
I have tried the GUF Walktrough and it doesn't works for me (the very last part, trying to logon as 'fred', doesn't work). I'm using SiteRoot, Apache proxying a zserver, and a Squid cache. All in the same machine... TIA -- César A. K. Grossmann ckant@usa.net http://members.xoom.com/ckant/
Hi Cesar ... I'm not trying to tell about login manager, because I'm still trying. But I can tell you about how to use RDBMS server and playing with data. You need a database adatper(I'm using ZODB, there are several.....you can choose as you like) and ZSQL method. Connect database from your control panel and mention the same in ZODB database connection, now use ZSQL method for retrieving the data and for any other SQL inputs. You can use Z Search Interface also for interface. Good Luck, Chandra Sekhar.P "Cesar A. K. Grossmann" wrote:
Hi!
I'm trying to produce a web site with user authentication, and was looking for something more customizable than the standard user authentication mechanism provided by Zope.
My first step was look in the Zope page, making a search on the term 'authentication'. I found three products: UserDB, GenericUserFolder, and LoginManager.
Reading the page at the UserDB I found the bellow:
"Update (10/30/99): Zen has posted a product that has more functionality than UserDB, called GenericUserFolder. "
Well, looks like the GenericUserFolder is more advanced. So I go to its page. In it there are another observation:
"Deprecated This product is being deprecated in favor of the LoginManager. LoginManager is what I like to believe that GUF would have been if I didn't have to write it in a hurry."
Well, the next step is going to the LoginManager and try to figure out how to install it and put it in my web site. I get the package (I'm using the Linux version of Zope, in a Conectiva Linux 4.2 - like Red Hat 6.x -, installed from the rpm packages found in the Zope site), and, after some troubles to make ZPatterns fully functional, I get it installed. So now? No HOWTO explaining how to put it to run. Well, go to the mailing list, and search old messages. No one helps me...
I'm looking for a sequence of steps needed to configure and use the LoginManager. How to add users? How to add local roles? How to integrate it whith LDAP (not for now, but in the future)? How to use a RDBMS server, like PostgreSQL, to store the accounts (in case I cannot put LDAP up an running)?
I'm not a Python programmer, and I have a limited knowledge of Zope and DTML, and my english is only better than your portuguese...
TIA -- César A. K. Grossmann ckant@usa.net http://members.xoom.com/ckant/
_______________________________________________ Zope maillist - Zope@zope.org http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
participants (6)
-
Alexandre A. Drummond Barroso -
Cesar A. K. Grossmann -
Itamar Shtull-Trauring -
Kevin Dangoor -
P Chandra Sekhar -
Stuart 'Zen' Bishop