[Zope] user account defined outside context of object being
accessed
Chris Withers
chris at simplistix.co.uk
Thu Dec 15 10:24:14 EST 2005
Kees de Brabander wrote:
> Unauthorized: Your user account is defined outside the context of the object
> being accessed. Access to 'f1_index' of (Folder at /f1), acquired through
> (Folder at /f1/f11/f111), denied. Your user account, user1, exists at
> /f1/f11/acl_users. Access requires one of the following roles:
> ['Authenticated', 'Manager', 'Owner', 'student'].
Looks like you were inadvertantly taking advantage of a security hole in
Zope that got plugged. That said, your example was extremely complicated.
Can you come up with as simple an example as possible so that we can
maybe help you out?
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
More information about the Zope
mailing list