I have a setup like this Zope 2.43 running on Linux: / acl_users (standard Zope) PrivatFolder acl_users (LoginManager) I also created a product MySite, with the ZClasses MyFolder and MyDocument. When I now do PrivatFolder/manage The LoginForm of LoginManager pops up, I can loggin as user "test" who has the role manager. I get the ZMI for this level I see that I am logged in as "test". I can add a DTML method for example. But when select MyDocument from the products to add, the Authentication box from the root pops up. When I cancel this I get the error message (since I am using ZDebug): Unauthorized: User Anonymous User is not allowed to access PrivatFolder/MyDocument_factory ... The user, whose roles are ('Anonymous',), would need to have one of the following roles: ('Manager',) So why I am the Anomyos User in this case, when the ZMI shows that I am logged in as test. Who has the role Manager. Mit freundlichen Grüßen Joachim Schmitz -------------------------------------------------------------------- AixtraWare Ingenieurbüro für Internetanwendungen Hüsgenstr. 33a, D-52457 Aldenhoven Telefon: +49-2464-8851, FAX: +49-2464-905163 -------------------------------------------------------------------- Key fingerprint = DA10 CC82 62F8 1DBB 39A1 1EDC 725B 3317 A8D7 C3A6 Keyserver: http://germany.keyserver.net/en/
Hi Joachim, I'm totally guessing here.. but when Zope2 traverses to an object... it does so as "anonymous". Once the object is found, the security machinery attemts to validate the user, and this is where LoginManager gets involved. My guess is that you have somehow got things set up so that Anonymous can't see the factory so that the MyDocument_add_form can be accessed, validated, and then displayed. Can you might try allowing Anonymous to "access contents information" in your PrivatFolder. -steve On Friday, February 15, 2002, at 07:30 AM, Joachim Schmitz wrote:
I have a setup like this Zope 2.43 running on Linux:
/ acl_users (standard Zope) PrivatFolder acl_users (LoginManager)
I also created a product MySite, with the ZClasses MyFolder and MyDocument.
When I now do PrivatFolder/manage
The LoginForm of LoginManager pops up, I can loggin as user "test" who has the role manager.
I get the ZMI for this level I see that I am logged in as "test". I can add a DTML method for example. But when select MyDocument from the products to add, the Authentication box from the root pops up. When I cancel this I get the error message (since I am using ZDebug):
Unauthorized: User Anonymous User is not allowed to access PrivatFolder/MyDocument_factory ... The user, whose roles are ('Anonymous',), would need to have one of the following roles: ('Manager',)
So why I am the Anomyos User in this case, when the ZMI shows that I am logged in as test. Who has the role Manager.
Mit freundlichen Grüßen Joachim Schmitz -------------------------------------------------------------------- AixtraWare Ingenieurbüro für Internetanwendungen Hüsgenstr. 33a, D-52457 Aldenhoven Telefon: +49-2464-8851, FAX: +49-2464-905163 -------------------------------------------------------------------- Key fingerprint = DA10 CC82 62F8 1DBB 39A1 1EDC 725B 3317 A8D7 C3A6 Keyserver: http://germany.keyserver.net/en/
_______________________________________________ Zope maillist - Zope@zope.org http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
Hi Steve, there is no special security setting for PrivatFolder, it acquire everything from the root, which has access-contentinformation set to anonymous. The strange thing is, that I can add all internal Zope objects like DTML-methods, active Images, but not ZClass based products. --On Freitag, Februar 15, 2002 08:30:39 -0500 Steve Spicklemire <steve@spvi.com> wrote:
Hi Joachim,
I'm totally guessing here.. but when Zope2 traverses to an object... it does so as "anonymous". Once the object is found, the security machinery attemts to validate the user, and this is where LoginManager gets involved. My guess is that you have somehow got things set up so that Anonymous can't see the factory so that the MyDocument_add_form can be accessed, validated, and then displayed. Can you might try allowing Anonymous to "access contents information" in your PrivatFolder.
-steve
On Friday, February 15, 2002, at 07:30 AM, Joachim Schmitz wrote:
I have a setup like this Zope 2.43 running on Linux:
/ acl_users (standard Zope) PrivatFolder acl_users (LoginManager)
I also created a product MySite, with the ZClasses MyFolder and MyDocument.
When I now do PrivatFolder/manage
The LoginForm of LoginManager pops up, I can loggin as user "test" who has the role manager.
I get the ZMI for this level I see that I am logged in as "test". I can add a DTML method for example. But when select MyDocument from the products to add, the Authentication box from the root pops up. When I cancel this I get the error message (since I am using ZDebug):
Unauthorized: User Anonymous User is not allowed to access PrivatFolder/MyDocument_factory ... The user, whose roles are ('Anonymous',), would need to have one of the following roles: ('Manager',)
So why I am the Anomyos User in this case, when the ZMI shows that I am logged in as test. Who has the role Manager.
Mit freundlichen Grüßen Joachim Schmitz -------------------------------------------------------------------- AixtraWare Ingenieurbüro für Internetanwendungen Hüsgenstr. 33a, D-52457 Aldenhoven Telefon: +49-2464-8851, FAX: +49-2464-905163 -------------------------------------------------------------------- Key fingerprint = DA10 CC82 62F8 1DBB 39A1 1EDC 725B 3317 A8D7 C3A6 Keyserver: http://germany.keyserver.net/en/
Hmm.. maybe it's the permission mapping in your ZClass? -steve On Friday, February 15, 2002, at 09:56 AM, Joachim Schmitz wrote:
Hi Steve,
there is no special security setting for PrivatFolder, it acquire everything from the root, which has access-contentinformation set to anonymous. The strange thing is, that I can add all internal Zope objects like DTML-methods, active Images, but not ZClass based products.
--On Freitag, Februar 15, 2002 08:30:39 -0500 Steve Spicklemire <steve@spvi.com> wrote:
Hi Joachim,
I'm totally guessing here.. but when Zope2 traverses to an object... it does so as "anonymous". Once the object is found, the security machinery attemts to validate the user, and this is where LoginManager gets involved. My guess is that you have somehow got things set up so that Anonymous can't see the factory so that the MyDocument_add_form can be accessed, validated, and then displayed. Can you might try allowing Anonymous to "access contents information" in your PrivatFolder.
-steve
On Friday, February 15, 2002, at 07:30 AM, Joachim Schmitz wrote:
I have a setup like this Zope 2.43 running on Linux:
/ acl_users (standard Zope) PrivatFolder acl_users (LoginManager)
I also created a product MySite, with the ZClasses MyFolder and MyDocument.
When I now do PrivatFolder/manage
The LoginForm of LoginManager pops up, I can loggin as user "test" who has the role manager.
I get the ZMI for this level I see that I am logged in as "test". I can add a DTML method for example. But when select MyDocument from the products to add, the Authentication box from the root pops up. When I cancel this I get the error message (since I am using ZDebug):
Unauthorized: User Anonymous User is not allowed to access PrivatFolder/MyDocument_factory ... The user, whose roles are ('Anonymous',), would need to have one of the following roles: ('Manager',)
So why I am the Anomyos User in this case, when the ZMI shows that I am logged in as test. Who has the role Manager.
Mit freundlichen Grüßen Joachim Schmitz -------------------------------------------------------------------- AixtraWare Ingenieurbüro für Internetanwendungen Hüsgenstr. 33a, D-52457 Aldenhoven Telefon: +49-2464-8851, FAX: +49-2464-905163 -------------------------------------------------------------------- Key fingerprint = DA10 CC82 62F8 1DBB 39A1 1EDC 725B 3317 A8D7 C3A6 Keyserver: http://germany.keyserver.net/en/
then it must be a general problem, cause it also happens with a fresh created ZClass with the default settings. And I must admit, that I do not understand what those permission mappings mean at all. --On Freitag, Februar 15, 2002 10:02:34 -0500 Steve Spicklemire <steve@spvi.com> wrote:
Hmm.. maybe it's the permission mapping in your ZClass?
-steve
Mit freundlichen Grüßen Joachim Schmitz -------------------------------------------------------------------- AixtraWare Ingenieurbüro für Internetanwendungen Hüsgenstr. 33a, D-52457 Aldenhoven Telefon: +49-2464-8851, FAX: +49-2464-905163 -------------------------------------------------------------------- Key fingerprint = DA10 CC82 62F8 1DBB 39A1 1EDC 725B 3317 A8D7 C3A6 Keyserver: http://germany.keyserver.net/en/
participants (2)
-
Joachim Schmitz -
Steve Spicklemire