[Zope] VerboseSecurity not working
michael nt milne
michael.milne at gmail.com
Fri Aug 25 16:54:40 EDT 2006
Hi
I couldn't install VerboseSecurity on Zope 2.8.7 and Plone 2.1.3
- *URL:
file:ResourceRegistries/skins/ResourceRegistries/renderAllTheScripts.pt
*
*Line 10, Column 16*
*Expression: not:'script/getInline'*
*Names:*
{'container': <PloneSite at /test>,
'context': <PloneSite at /test>,
'default': <Products.PageTemplates.TALES.Default instance at 0x0110BAF8>,
'here': <PloneSite at /test>,
'loop': <Products.PageTemplates.TALES.SafeMapping object at 0x04F2CB98>,
'modules': <Products.PageTemplates.ZRPythonExpr._SecureModuleImporter
instance at 0x010F6D28>,
'nothing': None,
'options': {'args': (),
'state':
<Products.CMFFormController.ControllerState.ControllerState object at
0x04F2F150>},
'repeat': <Products.PageTemplates.TALES.SafeMapping object at 0x04F2CB98>,
'request': <HTTPRequest, URL=
http://localhost:8080/test/login_form>,
'root': <Application at >,
'template': <FSControllerPageTemplate at /test/login_form>,
'traverse_subpath': [],
'user': trip}
- Module Products.PageTemplates.Expressions, line 246, in __call__
- Module Products.PageTemplates.TALES, line 221, in evaluate
*URL:
file:ResourceRegistries/skins/ResourceRegistries/renderAllTheScripts.pt
*
*Line 10, Column 16*
*Expression: standard:'script/getInline'*
*Names:*
{'container': <PloneSite at /test>,
'context': <PloneSite at /test>,
'default': <Products.PageTemplates.TALES.Default instance at 0x0110BAF8>,
'here': <PloneSite at /test>,
'loop': <Products.PageTemplates.TALES.SafeMapping object at 0x04F2CB98>,
'modules': <Products.PageTemplates.ZRPythonExpr._SecureModuleImporter
instance at 0x010F6D28>,
'nothing': None,
'options': {'args': (),
'state':
<Products.CMFFormController.ControllerState.ControllerState object at
0x04F2F150>},
'repeat': <Products.PageTemplates.TALES.SafeMapping object at 0x04F2CB98>,
'request': <HTTPRequest, URL=
http://localhost:8080/test/login_form>,
'root': <Application at >,
'template': <FSControllerPageTemplate at /test/login_form>,
'traverse_subpath': [],
'user': trip}
- Module Products.PageTemplates.Expressions, line 185, in __call__
- Module Products.PageTemplates.Expressions, line 173, in _eval
- Module Products.PageTemplates.Expressions , line 127, in _eval
__traceback_info__: script
- Module Products.PageTemplates.Expressions, line 313, in
restrictedTraverse
__traceback_info__: {'path': ['getInline'],
'TraversalRequestNameStack': []}
- Module Products.VerboseSecurity.VerboseSecurityPolicy, line 151, in
validate
On 8/16/06, Sylvain Thénault <sylvain.thenault at logilab.fr> wrote:
>
> On Thursday 27 July à 20:10, Dieter Maurer wrote:
> > Peter Bengtsson wrote at 2006-7-27 10:51 +0100:
> > >Why am I getting this on my zope 2.8.5??
> > >
> > >2006-07-27 10:34:07 ERROR Zope.SiteErrorLog
> > >http://localhost:8080/test/Real/MoreStatistics/index_html
> > >Traceback (most recent call last):
> > > File
> > >"/usr/HOME/peterbe/zope/zope285/lib/python/ZPublisher/Publish.py", line
> > >104, in publish
> > > object=request.traverse(path, validated_hook=validated_hook)
> > > File
> > >"/usr/HOME/peterbe/zope/zope285/lib/python/ZPublisher/BaseRequest.py",
> > >line 461, in traverse
> > > response.unauthorized()
> > > File
> > >"/usr/HOME/peterbe/zope/zope285/lib/python/ZPublisher/HTTPResponse.py",
> > >line 685, in unauthorized
> > > raise Unauthorized, m
> > >Unauthorized: <strong>You are not authorized to access this
> > >resource.</strong><p>
> > >Username and password are not correct.
> >
> > This "Unauthorized" is not generated by Zope security mechanism
> > but by the ZPublisher.
> >
> > Apparently, "VerboseSecurity" does not hook in the ZPublisher.
>
> VerboseSecurity is included in zope 2.8.x and it seems like having the
> zope 2.7 VerboseSecurity
> product into a zope 2.8 instance break the security machinery.
>
> --
> Sylvain Thénault LOGILAB, Paris (France)
> Formations Python, Zope, Plone, Debian: http://www.logilab.fr/formations
> Développement logiciel sur mesure: http://www.logilab.fr/services
> Python et calcul scientifique: http://www.logilab.fr/science
>
> _______________________________________________
> Zope maillist - Zope at zope.org
> http://mail.zope.org/mailman/listinfo/zope
> ** No cross posts or HTML encoding! **
> (Related lists -
> http://mail.zope.org/mailman/listinfo/zope-announce
> http://mail.zope.org/mailman/listinfo/zope-dev )
>
--
michael
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.zope.org/pipermail/zope/attachments/20060825/b8159074/attachment.htm
More information about the Zope
mailing list