[Zope] set permission dependig from domain
Paul Browning
paul.browning@bristol.ac.uk
Thu, 28 Feb 2002 20:21:12 -0000
--On 28 February 2002 16:37 +0100 Marcus Bergmann
<marcus.bergmann@isst.fhg.de> wrote:
> Hello,
>
> is it possible to set permissions, e.g. 'view', depending from the
> surfers domain? I need to protect files and folders from viewing by
> surfers outside our domains. I dont want a login screen!
>
> Any suggestions?
One of the biggest secrets (IMHO) about Zope > 2.3.0
is buried in the doc/HISTORY.txt file:
Zope 2.3.0 beta 2
Bugs Fixed
- Changed the default support for "domain authentication mode"
in UserFolder to be disabled by default. Domain auth mode
was implemented for a very specific case long ago and causes
a lot of overhead for anonymous accesses that are needless
for the 99% case. People who actually want domain auth mode
turned on may call a new 'setDomainAuthenticationMode' method
to enable it if they wish.
It's turned off by default. You need to turn it on. As a manager user,
visit the URL of your acl_user folder and call its
"setDomainAuthenticationMode" method:
http://site/folder/acl_users/setDomainAuthenticationMode?domain_auth_mode=1
You then see the response:
Domain authentication mode set to 1
Then you can restrict by IP address (using the Domains box in acl_users).
Paul
--
The Library, Tyndall Avenue, Univ. of Bristol, Bristol, BS8 1TJ, UK
E-mail: paul.browning@bristol.ac.uk URL: http://www.bris.ac.uk/