[Zope] Security - View vs Access Contents
Tim Considine
timc@bizdev.co.uk
Tue, 17 Apr 2001 21:07:41 +0000
Newbie questions - Zope experience 3 days - be gentle with me !
(1) I want to set the security properties of a sub-folder to relate to=20
a specific user. So I uncheck View for the anonymous user to "force" a=20
Zope login. But it doesn't appear to work. So I uncheck Access=20
Contents too - and it does seem to work.
What is the difference between these 2 permissions ?
(2) Also I am struggling then to make Zope check the=20
AUTHENTICATED_USER against a property set for the folder which contains=20
the authorised user's initials (which are the same as login name).
I am trying to use a standard DTML method but set individual property=20
elements for each sub-folder. Is this OK as an approach ? Or is there=20
a better one ?
My DTML code is this ... but it's clearly wrong ! [User is name or=20
property element set for the folder.]
<dtml-if expr=3D"AUTHENTICATED_USER.getUserName()=3D=3DobjectValues('User=
')">
<br>Welcome <br>
<dtml-else>
<br>You should not be here.<br>
</dtml-if>
Any advice on either would be much appreciated.
Tim Considine