Hi, I've been playing around with zope's users and roles to try and figure out a problem I have. I set up a test folder and created a subfolder. test/ test/folder1 I then create a dtml method called hello which reads:
Hello <dtml-var "AUTHENTICATED_USER.getUserName()" >!
I give the method a proxy role of manager. In folder1/ I create a user called 'tester'. ('tester' is not a user in the parent folder test/) I the goto test/folder1/hello. Log in as tester and get the output
Hello tester!
When I got to test/hello, however I just get
Hello Anonymous User!
When I log in a manager 'jon' i get Hello jon! in both folders. It seems like if I use a proxy role for a method, and a user does not have permissions in that folder AUTHENTICATED_USER.getUserName() returns 'Anonymous User'. Is that correct? Thanks in advance for any help! Jonathan Bryant jonathanbryant@hotmail.com _________________________________________________________________ Chat with friends online, try MSN Messenger: http://messenger.msn.com
Jonathan Bryant wrote:
It seems like if I use a proxy role for a method, and a user does not have permissions in that folder AUTHENTICATED_USER.getUserName() returns 'Anonymous User'. Is that correct?
When the user goes to a level higher than the one where he is logged in, he *is* anonymous at that level. Permissions sort of trickle downwards in the Zope tree. It cannot run uphill. Aquisition causes this behaviour. regards Max M
participants (2)
-
Jonathan Bryant -
Max M