Hi, does anybody have experiences with storing roles in an external database with APE. What are possible problems with that. concerning stability, reliability etc. Are there other or better solutions storing roles externally. For the first step, only roles of one folder-object need to be stored. Is it possible, to store all roles of any folder externally. The informations about the roles should only be kept in the external database, so changes of the concerned table should change the roles in zope. -- Thanks for your answers, Elena
Hello, I have really hard time understanding the whole concept of Zope authentication process. From reading the chanks of code and explanations I uderstand some concepts, but it is difficult to link them into one global picture. My quiestion is, for example I'd like to build some web application where I need to take care of user authentication and access control to some pages of the website. If you have some experience with PHP of JSP it is not hard too hard to implement. So how do I do it in Zope? Should all of control be based on AccessControl module? And how session API and UserFolder objects are related to all this? I would appreciate code snippets, links to manuals and etc. Most importantly, help me build a consistent picture for user management in Zope. Thank you. Bobir
The main difference is that you do not build your own authentication mechanism. You use the existing one, not by calling methods but simply by assigning roles to users and permissions to roles. Zope does the rest automatically. jens
Bobirkhon Ismailov wrote at 2003-11-28 23:22 +0500:
I have really hard time understanding the whole concept of Zope authentication process. From reading the chanks of code and explanations I uderstand some concepts, but it is difficult to link them into one global picture.
There is a section about users, permissions and roles in the Zope Book. The section "Web publishing" of <http://www.dieter.handshake.de/pyprojects/zope/book/chap3.html> describes the publishing process and among others where/how authentication is done. -- Dieter
participants (4)
-
Bobirkhon Ismailov -
Dieter Maurer -
Elena Schulz -
Jens Vagelpohl