Obrigado Jose Henrique, still that's not exactly what I need. Both the Plone book and Dieter's page are always good reference, but unfortunately say nothing about cookie crumbler. Knowing the basics, my search is for specific CC documetation. In theory, it has to be documented somewhere, as many people seems to be using it... Anyone can help? TIA again, Pablo PS: please include my email address in the "To:" fields as I read the list in digest mode. Thanks.
Date: Tue, 7 Dec 2004 14:06:32 -0200 From: "Jose Henrique dos Reis" <jhreis@senado.gov.br> Subject: RES: [Zope] Cookie Crumbler To: <zope@zope.org>
Look at:
http://www.dieter.handshake.de/pyprojects/zope/book/chap3.html#authenticatio... http://his.biologie.hu-berlin.de/PloneBook/ch9.rst
-----Mensagem original----- De: zope-bounces@zope.org [mailto:zope-bounces@zope.org]Em nome de Pablo Ziliani Enviada em: terça-feira, 7 de dezembro de 2004 13:56 Para: zope@zope.org Assunto: [Zope] Cookie Crumbler
Hi all, I'm looking for some Cookie Crumbler documentation/howto or the like, can anybody point me to the right place? No, the source is not well documented and Google didn't helped much either.
TIA, Pablo
Pablo Ziliani wrote at 2004-12-9 18:02 -0300:
... Knowing the basics, my search is for specific CC documetation. In theory, it has to be documented somewhere, as many people seems to be using it... Anyone can help?
Most people can use Cookie Crumbler without any deeper information -- it just works. Most people that need deeper information look at the source or ask a concrete question in a mailing list ;-) In fact, what Cookie Crumber (essentially) does is quite simple: When "Cookie Crumber" does not see an "Authorization" header but its authentication cookie, it uses the cookie value to provide an "Authorization" header. (It uses a higl level interface to the "__before_publishing_traverse__" hook to intercept requests). Moreover, (in some cases) it redefines "RESPONSE.unauthorized". This is the RESPONSE method that gets called when the ZPublisher gets an "Unauthorized" exception back. The redefinition presents the Cookie Crumblers login page instead of the normal 401 response. What more do you need? -- Dieter
participants (2)
-
Dieter Maurer -
Pablo Ziliani