Can't you just remove all permissions from the Anonymous role? Then you can create your "privileged" role, create a user having that role, and restrict that user's domain spec to the domain you want. Or did I miss some part of the discussion? -- Alexander Staubo http://www.mop.no/~alex/ "It has taken the planet Earth 4.5 billion years to discover it is 4.5 billion years old." --George Wald

-----Original Message----- From: Martijn Pieters [mailto:mj@antraciet.nl] Sent: 5. august 1999 16:44 To: Tony McDonald; Zope List Subject: Re: [Zope] hiding site content based upon a domain? (similar to htaccess)

At 14:44 05/08/99 , Tony McDonald wrote: Cheers Martijn,

...

That's really cool, it works well. Problem is I'd like to deny access to people who aren't in that domain (preferably with a dtml doc that tells them why). Is there a way of doing this?

Hmm...

Try making a user (anon?) that has an domain spec of *.*.*.* Also add a user (deny?) that has the domain spec you want to exclude.

Now you _should_ be able to distinguish between the two in your standard_html_header and redirect deny to a page telling him that access is denied...

If you find that the user anon always matches, try placing it in one the acl_users folder one step up in the hierarchy from the folder you defined deny in.

All of this untested of course =) YMMV.

Let us know if this works!

-- Martijn Pieters, Web Developer | Antraciet http://www.antraciet.nl | Tel: +31-35-7502100 Fax: +31-35-7502111 | mailto:mj@antraciet.nl http://www.antraciet.nl/~mj | PGP: http://wwwkeys.nl.pgp.net:11371/pks/lookup?op=get&search=0xA8A3 2149

_______________________________________________ Zope maillist - Zope@zope.org http://www.zope.org/mailman/listinfo/zope (To receive general Zope announcements, see: http://www.zope.org/mailman/listinfo/zope-announce For developer-specific issues, zope-dev@zope.org - http://www.zope.org/mailman/listinfo/zope-dev )