Joerg Baach wrote at 2008-2-25 19:45 +:
...
I am trying to have a folderish object that acquires from a user object
(ldapuserfolder). It should have its own properties and contents, but
fall back to the ones of the ldap user.
I have created an object, extending Folder, and it behaves nicely
Joerg Baach wrote at 2008-2-25 22:03 +:
...
Error Type: Unauthorized
Error Value: Your user account is defined outside the context of the
object being accessed.
This is a different spelling for what I called in the last
message object not covered by the user folder identifying the current
On Monday 25 February 2008 23:52:26 Joerg Baach wrote:
Hi *,
But somehow I have the feeling it has more to do with the 'and the
container is not wrapped' part of the message. Not that I can make sense
of it ;-)
Mmm, after even more searching, and not understanding I found
Hi Peter,
acl = parent.unrestrictedTraverse(folder)
when changing to
acl = parent.restrictedTraverse(folder)
I still don't get the Unauthorized exceptions. Anyhow, I will have to do
a bit more wrapping, and then see if the solutions survive the security
testing ;-)
Cheers,
This is maybe a naive suggestion but if Zope's TTW execution (e.g.
Python Scripts) can't find a __roles__ on the object at hand doesn't
that just mean that the class wasn't initialized with any security.
class LDAPProxy(Folder):
...
from Globals import InitializeClass
Hi *,
I am trying to have a folderish object that acquires from a user object
(ldapuserfolder). It should have its own properties and contents, but
fall back to the ones of the ldap user.
I have created an object, extending Folder, and it behaves nicely in
zopectl debug. When I try to access it
On Monday 25 February 2008 20:45:37 Joerg Baach wrote:
Hi *,
I am trying to have a folderish object that acquires from a user object
(ldapuserfolder). It should have its own properties and contents, but
fall back to the ones of the ldap user.
I have created an object, extending Folder, and
Hi Peter,
I'm not familiar with LDAPUserFolder (its not really a user object but a user
container, isn't it?) but the error you're getting is a security error -- the
Python Script checks for security attributes before it accesses attributes.
You need to add the appropriate security
I should have mentioned that in order for verbose-security to work you also
need to switch to the python security implementation -- did you do that?
Yes, I did.
If yes, you should see lines like these in your event.log:
No, don't :-(
But somehow I have the feeling it has more to do with
On Monday 25 February 2008 22:45:24 Joerg Baach wrote:
I should have mentioned that in order for verbose-security to work you
also need to switch to the python security implementation -- did you do
that?
Yes, I did.
If yes, you should see lines like these in your event.log:
No, don't
On Monday 25 February 2008 21:31:46 Joerg Baach wrote:
Hi Peter,
I'm not familiar with LDAPUserFolder (its not really a user object but a
user container, isn't it?) but the error you're getting is a security
error -- the Python Script checks for security attributes before it
accesses
ps.: http://www.zope.org/Documentation/Books/ZDG/current/Security.stx has old
but AFAIK still good info
On Monday 25 February 2008 22:45:24 Joerg Baach wrote:
I should have mentioned that in order for verbose-security to work you
also need to switch to the python security implementation --
Hi again,
2008-02-25T22:30:18 DEBUG ImplPython Unauthorized: Your user account does not
have the required permission. Access to 'manage' of (Application at )
denied. Your user account, Anonymous User, exists at /acl_users. Access
requires one of the following roles: ['Manager']. Your
Hi *,
But somehow I have the feeling it has more to do with the 'and the
container is not wrapped' part of the message. Not that I can make sense
of it ;-)
Mmm, after even more searching, and not understanding I found
http://www.mail-archive.com/[EMAIL PROTECTED]/msg11438.html
and changed
14 matches
Mail list logo