[ZDP] BackTalk to Document Zope Developer's Guide (2.4 edition)/Security
nobody@nowhere.com
nobody@nowhere.com
Thu, 12 Sep 2002 11:30:57 -0400
A comment to the paragraph below was recently added via http://www.zope.org/Documentation/Books/ZDG/current/Security.stx#2-0
---------------
A typical web application needs to be securely managed. Different
types of users need different kinds of access to the components
that make up an application. To this end, Zope includes a
comprehensive set of security features. This chapter's goal is to
shed light on Zope security in the context of Zope Product
development. For a more fundamental overview of Zope security,
you may wish to refer to the *Zope Book*, Chapter 6, "Users and
Security":http://www.zope.org/Members/michel/ZB/Security.dtml .
Before diving into this chapter, you should have a basic
understanding of how to build Zope Products as well as an
understanding of how the Zope object publisher works. These topics
are covered in Chapter 2 and Chapter 3, respectively.
% Anonymous User - Sep. 12, 2002 11:30 am:
Our web-page is designed in a way to allow specific user groups access to certain parts of it. In order to
check this function we created in a lower hierarchy of the parent folder a new folder (test folder). Access
to the new folder has been restricted by cancelling all acquire permission settings.
The manager however obtains all rights to access and administrate the web-site. Another self-defined user
group shall only be able to view the defined pages.
When the web-site is reloaded in a new Internet Explorer Window the access is denied in general.
No matter whether this is attempted by the manager itself or some restricted user, who has been given
permission to enter specific parts of our web-pages. Unfortunately this is not the expected result. Has
anybody got a clue what is wrong ? What could be done to access a limited part of our system ?
contact: gis@nordschwarzwald-region.de