no-login account for local users
Hello, I'd like to create a default nologin user account for users accessing pages from local network (10.*.*.*) so that they do not have to authenticate. I know that you can add additional IP contraints once you have a normal (password based authentication) account. Could you give me any hints? Regards, r. Kotowicz.
+-------[ Radek Kotowicz ]---------------------- | Hello, | | I'd like to create a default nologin user account for users accessing | pages from local network (10.*.*.*) so that they do not have to | authenticate. | I know that you can add additional IP contraints once you have a normal | (password based authentication) account. You don't need to add a password. You can have an empty password and a domain of 10.* However users would still need to "Login" technically. However you can fake this, by creating a link that points them to http://nologin@yourServer/ which will set their credentials. I'm not sure if this meets your requirements or not. -- Andrew Milton akm@theinternet.com.au
Radek Kotowicz wrote:
I'd like to create a default nologin user account for users accessing pages from local network (10.*.*.*) so that they do not have to authenticate. I know that you can add additional IP contraints once you have a normal (password based authentication) account. Could you give me any hints?
I suspect you may be able to write a custom UserFolder for that, and you could probably get away with inheriting from the existing UserFolder to do most of the work, and creating a new user class concerned with domain only. See Zope/lib/python/AccessControl/User.py --jcc
On Feb 8, 2005, at 5:57 PM, J. Cameron Cooper wrote:
Radek Kotowicz wrote:
I'd like to create a default nologin user account for users accessing pages from local network (10.*.*.*) so that they do not have to authenticate. I know that you can add additional IP contraints once you have a normal (password based authentication) account. Could you give me any hints?
I suspect you may be able to write a custom UserFolder for that, and you could probably get away with inheriting from the existing UserFolder to do most of the work, and creating a new user class concerned with domain only.
See Zope/lib/python/AccessControl/User.py
--jcc
Thanks for that hint - that's probably the solution I need. rk
Radek Kotowicz wrote at 2005-2-8 09:16 +0100:
I'd like to create a default nologin user account for users accessing pages from local network (10.*.*.*) so that they do not have to authenticate. I know that you can add additional IP contraints once you have a normal (password based authentication) account. Could you give me any hints?
The stock Zope "UserFolder" has such a feature. However, it is disabled (for security reasons -- it is not too difficult to fake an IP address). You can enable it with the "setDomainAuthenticationMode" method. -- Dieter
Dieter Maurer wrote:
The stock Zope "UserFolder" has such a feature. However, it is disabled (for security reasons -- it is not too difficult to fake an IP address).
I believe it's actually for scalabiltiy reasons. The way IP auth is implemented by default is appallingly slow and affects all requests if it's enabled, even if no users are actually using IP auth. cheers, Chris -- Simplistix - Content Management, Zope & Python Consulting - http://www.simplistix.co.uk
participants (5)
-
Andrew Milton -
Chris Withers -
Dieter Maurer -
J. Cameron Cooper -
Radek Kotowicz