Is it me or is it Zope? I have a directory structure something like this: root level1 level2 level3 In level2 I have an acl_users folder which I have defined a user "joe" joe doesn't seem to be able to login in (he logins in at http://www.somedomain.com/level1/level2) joe sees a login screen, therefore we know he has the correct url, but when he types in his User Name and Password he gets an Authorization Failed Screen. If I define joe in the root's acl_users folder then he can log in. Does this mean that all users must be defined in the root, and therefore all roles must also be defined in the root? Oh please let this not be true! DR
On Thu, 14 Oct 1999, Dan Rusch wrote:
Is it me or is it Zope?
I have a directory structure something like this:
root level1 level2 level3
In level2 I have an acl_users folder which I have defined a user "joe"
joe doesn't seem to be able to login in (he logins in at http://www.somedomain.com/level1/level2)
Are you sure you have given joe manager role? If you click on joe in the acl_users folder you should see a box named Roles. Make sure you click on the appropriate roles you wish to assign to him. They should appear in black background Pavlos
On Thu, 14 Oct 1999, Dan Rusch wrote:
In level2 I have an acl_users folder which I have defined a user "joe"
joe doesn't seem to be able to login in (he logins in at http://www.somedomain.com/level1/level2)
joe sees a login screen, therefore we know he has the correct url, but when he types in his User Name and Password he gets an Authorization Failed Screen.
If I define joe in the root's acl_users folder then he can log in.
Have you tightened security on your root and level1 folders? If DTML documents in level2 are trying to access objects from higher in the tree, those documents will need to be accessible to an Anonymous browser (I think - my security model will be simpler). The containers they are in might also require certain permissions, but most likely you just have to give view rights to standard_header_document etc. ___ // Zen (alias Stuart Bishop) Work: zen@cs.rmit.edu.au // E N Senior Systems Alchemist Play: zen@shangri-la.dropbear.id.au //__ Computer Science, RMIT WWW: http://www.cs.rmit.edu.au/~zen
I have no experience in this matter, but I've seen several questions of this nature pass thru this mailing list, and all had the same answer: Somewhere, probably in a navigation method, there's a DTML statement like this: <!--#in SOME_LIST_OF_OBJECTS--> ...that should look like this: <!--#in SOME_LIST_OF_OBJECTS skip_unauthorized--> Joe gets an error because the navigation method is trying to show him something he's not authorized to see. HTH -- Loren
-----Original Message----- From: r oot [mailto:root@globalcrossing.com]On Behalf Of Dan Rusch Sent: Thursday, October 14, 1999 14:32 To: zope@zope.org; Megan Hoyer; Dan Rusch; Dave Parker; John Webb; Bob Webb; Karen Jacqmin-Adams Subject: [Zope] Permission Question
Is it me or is it Zope?
I have a directory structure something like this:
root level1 level2 level3
In level2 I have an acl_users folder which I have defined a user "joe"
joe doesn't seem to be able to login in (he logins in at http://www.somedomain.com/level1/level2)
joe sees a login screen, therefore we know he has the correct url, but when he types in his User Name and Password he gets an Authorization Failed Screen.
If I define joe in the root's acl_users folder then he can log in.
Does this mean that all users must be defined in the root, and therefore all roles must also be defined in the root? Oh please let this not be true!
DR
_______________________________________________ Zope maillist - Zope@zope.org http://www.zope.org/mailman/listinfo/zope
(Related lists - please, no cross posts or HTML encoding!
To receive general Zope announcements, see: http://www.zope.org/mailman/listinfo/zope-announce
For developer-specific issues, zope-dev@zope.org - http://www.zope.org/mailman/listinfo/zope-dev )
participants (4)
-
Dan Rusch -
Loren Stafford -
Pavlos Christoforou -
Stuart 'Zen' Bishop