[Zope-dev] Re: [ZODB-Dev] Blather

Magnus Heino magnus.heino@pleon.sigma.se
Fri, 13 Sep 2002 07:29:02 +0200


> >>What do ZODB and VerboseSecurity log at the BLATHER level?
> >
> > 2002-09-12T17:55:53 BLATHER(-100) VerboseSecurity Unauthorized: Your =
user
> > account does not have the required permission.  Access to 'manage' of
> > (Application instance at 8b9cf90) denied. Your user account, Anonymou=
s
> > User, exists at /acl_users. Access requires one of the following role=
s:
> > ['Manager']. Your roles in this context are ['Anonymous'].
> >
> > 2002-09-12T17:56:57 BLATHER(-100) ZODB Commiting subtransaction of si=
ze
> > 2909677
> >
> > Maybe its Shanes VerboseSecurity product that should use INFO, cause =
all
> > it does is output those logs... I mean, if you have it installed, you
> > probably want to see the logs.
>
> This is a tough call.  VerboseSecurity often logs information that migh=
t
> be useful, but which does not actually raise an Unauthorized error.  Fo=
r
> example, if you look at the management interface as a semi-restricted
> user, you'll see only some of the tabs.  VerboseSecurity will output a
> log message for each tab you can't see and for every ZMI request.  This
> is far more info than most people want (including me). :-)

Why not keep this at BLATHER, but change the "Unauthorized error's" to IN=
FO?


--=20

  /Magnus Heino