On Sat, 2011-10-15 at 07:50 -0700, richzilla wrote: > I think so, there are two routes mapped to my login view. One of them > is an explicit route matched from a path, and other is a context based > route for HTTPForbidden. If its any help, the full stack trace for the > exception is as follows: > > HTTPForbidden: debug_authorization of url > http://localhost:6543/settings/articles > (view name u'' against context <HTTPForbidden at 0x3c066e8 403 > Forbidden>): ACLDenied permission 'view' via ACE '<default deny>' in > ACL '<No ACL found on any object in resource lineage>' on context > <HTTPForbidden at 0x3c066e8 403 Forbidden> for principals > ['system.Everyone']
You might try sending over the results of the command "paster proutes development.ini" and/or your configuration code that calls add_route and/or add_view. - C > > On Oct 15, 2:20 pm, Mark Erbaugh <[email protected]> wrote: > > Have you remapped the Forbidden view? > > > > Sent from my iPad > > > > On Oct 15, 2011, at 5:38 AM, richzilla <[email protected]> wrote: > > > > > > > > > > > > > > > > > Im having a bit of trouble getting security in pyramid to work > > > properly. My security itself seems to be working, if a user attempts > > > to an access a resource they are not authorized to view, pyramid > > > throws an HTTPForbidden exception. The problem is that in this > > > instance, its supposed to fall back to the login view, this isnt > > > happening, im just getting the default pyramid exception screen with > > > the stacktrace. > > > > > my login view: > > > > >http://pastebin.com/gQnPdf4B > > > > > All of views have a default permission set to 'view', my acl class > > > looks as follows: > > > > >http://pastebin.com/VvanZXbn > > > > > As i said, the ACL aspect appears to be working. Interestingly, if i > > > remove the default_permission from my init.py, everything works as > > > normal. > > > > > Any pointers as to where im going wrong would be appreciated. > > > > > -- > > > You received this message because you are subscribed to the Google Groups > > > "pylons-discuss" group. > > > To post to this group, send email to [email protected]. > > > To unsubscribe from this group, send email to > > > [email protected]. > > > For more options, visit this group > > > athttp://groups.google.com/group/pylons-discuss?hl=en. > -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
