[Zope] newbie question
Tony McDonald
tony.mcdonald@ncl.ac.uk
Fri, 8 Oct 1999 11:40:15 +0100
At 3:25 pm +1000 8/10/99, Terry Kerr wrote:
>Hi,
>
>It is probably really easy, but how do I restrict access to
>surfers...like the .htaccess does in apache? I cannot find any
>documentation on this.
>
>terry
It isn't that easy actually - it's a bit of a fiddle.
1) in the acl_users folder *above* where you want to deny access to,
create a user 'AnonUser' with no password and domain = '*.*.*.*'
2) in the acl_users folder where you want access denied to, create a
user 'AllowedUser' with no password and domain '*.your.domain'
3) In the standard_html_header in the second folder add some dtml code
<dtml-if "_.str(REQUEST['AUTHENTICATED_USER'])=='AnonUser'">
<dtml-call "RESPONSE.redirect('denied')">
</dtml-if>
<html>
etc etc
and create a DTML method called 'denied' that explains to the person
what's going on. *Don't* use standard_html_header in the 'denied'
method as you'll get infinite recursion.
This is a bit of a faff - I may well look at Apache rewrite rules to
restrict access to a site as a whole.
hth
tone
------
Dr Tony McDonald, FMCC, Networked Learning Environments Project
http://nle.ncl.ac.uk/
The Medical School, Newcastle University Tel: +44 191 222 5888
Fingerprint: 3450 876D FA41 B926 D3DD F8C3 F2D0 C3B9 8B38 18A2