Re: [Zope] secure management with Site Access?
David Elkins writes: Have you tried setting up something like zope.domain.com with the https SiteRoot and Apache pointing directly at manage? Pointing a virtual host directly at manage I can do, but where do I put the SiteRoot? If I put an https SiteRoot in a directory, then plain ol' unencrypted access won't be happening... all of the URLs inside the site will point to 'https://' instead of 'http://', right? Or am I missing something? You could additional add in a rewrite/proxy command to redirect to the SSL side for www.domain.com/manage. Again, getting Apache to do the right thing I've got figured out. It's just the SiteRoot causing the problem; all of the links inside the folder with the SiteRoot will be either 'http' or 'https', but I'm looking for some solution that will allow either, depending on the previous REQUEST. I know that SiteRoot is basically a special kind of access rule, maybe a smarter access rule can be used instead of a SiteRoot... Thanks for your feedback, and please let me know if there's something that I'm not seeing. rob ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] secure management with Site Access?
with the SiteRoot will be either 'http' or 'https', but I'm looking for some solution that will allow either, depending on the previous REQUEST. I It has not to depend on the last request, it has to depend on the actual request. Actually there are some examples in the SiteRoot documentation how to write access rules to manipulate URLs. They only have to be extended to keep the protocol in place. I need this myself too but didn't have the time and Python knowledge to figure it out. If somebody does, please announce it here :) Fro those who cannot program Python it would be a nice extension to SiteRoot to have a property "keep protocol" or something like that. This would simplify it's use for this purpose dramatically. Regards, Frank ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
[Zope] secure management with Site Access?
Is anyone using the Apache/mod_proxy/SiteAccess method of using Zope with the ability to access a given virtual host both with and without SSL encryption? If so, can you give me some pointers on how to accomplish this? I'd like to use SSL for all of my management activity but have the main site be available for non-encrypted viewing. The 'SiteRoot', though, will only rewrite the URLs with either 'http' or 'https', and isn't smart enough to do one or the other depending on the form of the original request. Is what I want to do even possible, or will I have to resort to using some sort of PCGI solution to accomplish my goal? thanks, rob ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )