[Zope] Newbie Password Frustration

Tino Wildenhain tino@wildenhain.de
Wed, 25 Jul 2001 14:12:16 +0200


Hi Janina,

--On Dienstag, 24. Juli 2001 15:45 -0400 Janina Sajka <janina@afb.net> 
wrote:

> Hello:
>
> I have the rpm of Zope 2.3.2-1 installed. Accessing http://localhost:8080
> brings up a Zope page, so I'm assuming the basic install is good.
>
> What I cannot figure out for the life of me is how to pass the
> administration password.
>
> 1.)	I have no knowledge of what the default was set to by the rpm
> install. I saw no message about this during the installation;

This might be a problem with the rpm, I personally recommend using the
source install as it gives more control.

> 2.)	Perhaps more to the point, I can't figure where, exactly, Zope is
> looking for this user/password data;

the zope-root/access file is for the emergency user. It can even be
plain text or you simple create it using zpasswd.py

cd zope-root
python zpassword.py access [enter]
answer the questions. You can leave "domain" blank at first.
Also make sure if you change permission on the file, the effective
user, zope is running under should be able to read it. (normally this
is "nobody")

You can also make a default manager user (emergency user is limited for
security reasons and cannot own anything except user folders and users)

python zpassword.py inituser

Note the files "access" and "inituser" must be in the zope installation 
root.
(or instance root, but this becomes to complicate for now)
Upon first start, the access file remains but the inituser file gets 
resorbed
and an initial manager account is created. You should try to login with this
manager account (choose them different)

> 3.) I see the python scripts for changing passwords in
> /usr/share/zope/utilities. zpasswd.py -u superuser -p [passwd] access
> seems to work OK. It writes a lovely access file that looks a lot like
> /etc/passwd. So, I chmod it to 600 and restart zope and try again. Still
> no cigar;
>
> I have searched docs, etc--but nothing is getting me past this impediment.
> What am I doing wrong? Is the administrator user still defaulted to
> username 'superuser?' Do I create this as a system account on my linux
> system and put a password in /etcpasswd & /etc/shadow? If not, where does
> it need to be?


HTH
Tino Wildenhain