Re: [Zope-dev] RAMCacheManager and object size

2005-07-11 Thread Shane Hathaway
Dieter Maurer wrote:
 Florent Guillaume wrote at 2005-7-8 20:36 +0200:
 
The RAMCacheManager does a costly pseudo-pickling of the objects it  
stores to compute their size, but that information is only used in  
the statistics screen.
 
 
 I replaced it by the following code:
 [...]

That's a fine compromise.  Are you going to check it in?

Shane
___
Zope-Dev maillist  -  Zope-Dev@zope.org
http://mail.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope )


[Zope-dev] Re: RAMCacheManager and object size

2005-07-11 Thread Tres Seaver
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Shane Hathaway wrote:
 Dieter Maurer wrote:
 
Florent Guillaume wrote at 2005-7-8 20:36 +0200:


The RAMCacheManager does a costly pseudo-pickling of the objects it  
stores to compute their size, but that information is only used in  
the statistics screen.


I replaced it by the following code:
[...]
 
 That's a fine compromise.  Are you going to check it in?

Andreas already did back in November, I think (it is present in that
form on the 2.7 branch, at least -- checks ... yep, the 2.8 branch in
SVN and the trunk, too.


Tres.
- --
===
Tres Seaver  +1 202-558-7113  [EMAIL PROTECTED]
Palladion Software   Excellence by Designhttp://palladion.com
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFC0zkz+gerLs4ltQ4RAugNAKCKaVIdEcEADm+8AI/udI74hbZHdwCghIDx
AQZdGd1P3D96MPUEQCJTPcM=
=sPJB
-END PGP SIGNATURE-
___
Zope-Dev maillist  -  Zope-Dev@zope.org
http://mail.zope.org/mailman/listinfo/zope-dev
**  No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope )


[Zope] Versioned connectors from ZODB

2005-07-11 Thread Etienne Labuschagne
If I get a versioned connection from the ZODB:

conn = Zope.DB.open(version=myVersion)
root = conn.root()
app = root['Application']

# do some stuff

get_transaction().commit()
conn.close()

Are the changes now in a version?  How do I get those changes rolled
into the trunk version of the ZODB?  I guess all objects changed in
the version will now be locked to that version until I apply the
version changes to the trunk?

Thanks
Etienne
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists -
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


[Zope] zodb/transaction questions

2005-07-11 Thread J├╝rgen Herrmann
hi all!

this is not my first posting regarding my before_transaction_commit
stuff, to summarize my plans:

make the transaction object call a method _before_transaction_commit()
on each changed object before the commit process starts.

in zodb 3.2 style transactions it seemed to be easy, changed objects
were stored in a list attribute of the transaction, attribute name was
'objects'.
now in zope 2.8 we have zodb 3.4 and everything is different, there
are managers/synchs to be registered, short question: how do i get
at the modified objects cleanly?

hope someone is fit in zodb hacking here :)

regards, juergen herrmann
___

 XLhost.de - eXperts in Linux hosting 

Juergen Herrmann
Weiherweg 10, 93051 Regensburg, Germany
Fon:  +49 (0)700 XLHOSTDE [0700 95467833]
Fax:  +49 (0)721 151 463027

ICQ:  27139974  -  IRC: [EMAIL PROTECTED]
WEB:  http://www.XLhost.de
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] Versioned connectors from ZODB

2005-07-11 Thread Florent Guillaume
ZODB versions are deprecated, unsupported, buggy and hard to use. Don't
use them.

Florent

Etienne Labuschagne  [EMAIL PROTECTED] wrote:
 If I get a versioned connection from the ZODB:
 
 conn = Zope.DB.open(version=myVersion)
 root = conn.root()
 app = root['Application']
 
 # do some stuff
 
 get_transaction().commit()
 conn.close()
 
 Are the changes now in a version?  How do I get those changes rolled
 into the trunk version of the ZODB?  I guess all objects changed in
 the version will now be locked to that version until I apply the
 version changes to the trunk?


-- 
Florent Guillaume, Nuxeo (Paris, France)   CTO, Director of RD
+33 1 40 33 71 59   http://nuxeo.com   [EMAIL PROTECTED]
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] DTML bug with database arrays in sqltest

2005-07-11 Thread David Pratt
This workaround is an excellent solution!  I am doing:

dtml-if an_arg>
and a_table.an_array_fieldt[dtml-sqlvar an_array_key type=int>][2] = dtml-sqlvar a_title type=string>
/dtml-if>

and just insert above any optional statements. Many thanks Dieter 

Regards,
David


On Sunday, July 10, 2005, at 06:59 PM, Dieter Maurer wrote:

David Pratt wrote at 2005-7-8 14:08 -0300:
...
dtml-and>
dtml-sqltest column=a_table.an_array_field[dtml-sqlvar 
an_array_key type=int>][2] name=a_title_var op=eq type=string 
optional>
. (rest of query)

The issue is how to test against these values when DTML cannot parse 
them?

You can emulate the dtml-sqltest with dtml-if and dtml-sqlvar
(or dtml-var).

-- 
Dieter

 ___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] Versioned connectors from ZODB

2005-07-11 Thread Florent Guillaume

Please stay on the list.

On 11 Jul 2005, at 16:19, Mark Barratt wrote:

Florent Guillaume wrote:
ZODB versions are deprecated, unsupported, buggy and hard to use.  
Don't

use them.


Understood. Alternative mechanisms which achieve the same object?


Well that depends on your objective, and you haven't told us what you  
want to do from a functional point of view.


Florent

--
Florent Guillaume, Nuxeo (Paris, France)   CTO, Director of RD
+33 1 40 33 71 59   http://nuxeo.com   [EMAIL PROTECTED]


___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] Helpdesk/Call Logging in Plone

2005-07-11 Thread Bakhtiar A Hamid
On 7/10/05, Adam Acord [EMAIL PROTECTED] wrote:
 I'm looking for ideas on how to implement a call logging/helpdesk
 ticketing system utilizing Plone.  Any ideas?  Before everyone
 responds try PloneCollector, I'm looking into it.  However, I need
 some ideas, as I'm new to Plone (researched last couple weeks and
 installed yesterday).
 
 I'm not looking for anything sophisticated, but useful.  I also saw a
 posting on the sf list that mentioned mailmanager, so I'm looking
 into that, too.

if you;re not tied to plone, and wants only helpdesk/ticketing system,
i'd recommend issue tracker product

it's actively developed, quite mature, silmple enough with many features

iirc, the url is http://www.issuetrackerproduct.com

 
 Any and all help is greatly appreciated.
 
 -aa
 ___
 Zope maillist  -  Zope@zope.org
 http://mail.zope.org/mailman/listinfo/zope
 **   No cross posts or HTML encoding!  **
 (Related lists -
  http://mail.zope.org/mailman/listinfo/zope-announce
  http://mail.zope.org/mailman/listinfo/zope-dev )
 


-- 
http://myzope.kedai.com.my - my-zope org
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists -
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] Helpdesk/Call Logging in Plone

2005-07-11 Thread ken wood

Bakhtiar A Hamid wrote:


On 7/10/05, Adam Acord [EMAIL PROTECTED] wrote:
 


I'm looking for ideas on how to implement a call logging/helpdesk
ticketing system utilizing Plone.  Any ideas?  Before everyone
responds try PloneCollector, I'm looking into it.  However, I need
some ideas, as I'm new to Plone (researched last couple weeks and
installed yesterday).

I'm not looking for anything sophisticated, but useful.  I also saw a
posting on the sf list that mentioned mailmanager, so I'm looking
into that, too.
   



if you;re not tied to plone, and wants only helpdesk/ticketing system,
i'd recommend issue tracker product

it's actively developed, quite mature, silmple enough with many features

iirc, the url is http://www.issuetrackerproduct.com

 


Any and all help is greatly appreciated.

-aa
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists -
http://mail.zope.org/mailman/listinfo/zope-announce
http://mail.zope.org/mailman/listinfo/zope-dev )

   




 

So, after you get IssueTracker running, just add a link on your plone 
site page. Users wont know the difference.

kaw
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )


[Zope] ldap authentication with apache or LDAPUserFolder?

2005-07-11 Thread Tim Suter
As some of you know, I am working on an installation of Zope/Zwiki.
What I have inherited is a 2.5.1 Zope/Zwiki on a Debian box.  I am
wanting to move the data from the 2.5.1 to a 2.8.  But here's the
situation.

At the root of the 2.5.1 install there is an acl_users folder that
appears to be the LDAPUserFolder authentication mechanism.  However,
upon looking at the apache config on my Debian box you see this:

VirtualHost X.X.org:80
location /Zope
AuthName Knowledge Access
AuthType Basic
AuthLDAPURL ldap://X.X.org:389/o=X.org?uid?sub?(objectClass=person)
require group cn=caitstaff,ou=Groups,o=X.org
/location
DocumentRoot /var/www
ServerName X.X.org

RedirectMatch ^/$ /Zope/
RewriteEngine on
RewriteCond %{HTTP:Authorization}  ^(.*)
RewriteRule ^/Zope/(.*) /usr/lib/cgi-bin/Zope/$1 
[e=HTTP_CGI_AUTHORIZATION:%1,t=application/x-httpd-cgi,l]

/VirtualHost

I am trying to figure out what is authenticating the user, LDAPUserFolder or 
the AuthLDAP in Apache?

In the root folder of the 2.5.1 install, there is our knowledge folder, argyle, 
inventory, a public folder.  Those are the custom folders
we created.
The Zope install folders are the control panel, temp_folder, Tutorial, test.  
There is an acl_users folder, but
it is not the original and has the LDAPUserFolder configuration in it.  

After authentication, the user is directed to the index_html which is in the 
root folder.  The links present on this 
page point to our available knowledge bases (the custom folders we created).  
As well, it has a manage Zope link.  Only certain users can access this link.
Anyone authenticated to the knowledge bases though, can add, edit or delete 
content.
This is the preferred method of this application as we want all users here to 
be able to openly collaborate.

I need to authenticate the same way on the new install as the old one.  Here is 
the dilemma though.
On the new install of 2.8, it rests on an RHEL4 server.  On this apache, I have 
to use authZLDAP
as there is a documented bug with RedHat for the AuthLDAP.

There are years of data collected in this knowledge base that I don't want to 
lose.  So I am being 
about as careful as I can be...maybe too careful.  

So, question wise...I am wondering what authentication to use.  I know that 
LDAPUserFolder appears
to be the way to go, but I don't know if that is what is actually happening.  
By the looks of the above 
apache configuration, could there be some sort of redirection happening?

Tim

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] Versioned connectors from ZODB

2005-07-11 Thread Etienne Labuschagne
On 7/11/05, Florent Guillaume [EMAIL PROTECTED] wrote:
 ZODB versions are deprecated, unsupported, buggy and hard to use. Don't
 use them.
 
 Florent

And as I understand, so are temporary connections too.  That leaves me
with getting a normal ZODB connection from the pool which I don't
want to do.

I really need a temporary connection that I can discard.  This
connection can have a much smaller cache than the normal connections
as it makes very little difference in the speed of data loading. 
Second prize is a connection that will only be used by a specific
process and never used for other processes.  Versions solves this for
me.

I can check out a connection and keep it aside only for data loading. 
But this means that I waste precious memory on a connection that does
not really need to cache the amount of objects that the other
connections should.  In my case, this translates to using 1GB of RAM
on one connection that gets used once a day.

Please believe me that I really need a special connection.  For
those who really want to know why, below is an attempt at an
explanation why:

In the application that I have written, I want to be able to get
connections that are not part of the normal connection pool.  Once my
process is finished, I can store these connections for later use, or
discard them.  Currently my application uses the normal connections in
the pool.  The problem is that this process contaminates the cache
of the connections with objects that are not used in normal client
application use (I use a thick client).  This means that the client
applications are extremely slow the next day and that it takes a long
time before the cache contains the often used objects again.

From there the reason why I DON'T want to use the connections for my
once a day data loading process.

My ZODB contains about 700`000 objects.  A connection caches about
60`000 objects to give satisfactory client speed.  To start up the
client before the cache is initialized, takes about 5 minutes.  Once
the cache is populated, it takes a client seconds to start up.  Data
loading invalidates all of this, but is worse than a clean cache in
that it takes long for the new objects in the cache to be flushed
and replaced by the often used objects again.  Data loading does not
need such a big cache since it mostly loads data into the ZODB. 
Unfortunately, the loaded objects also end up in the cache.

Why do I need so many objects in the cache?  Some searches cannot be
done with a mere ZCatalog search and have to run through a subset of
all the objects.  These tend to fit nicely in the cache.
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists -
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


[Zope] security for ZPT-based Product

2005-07-11 Thread Milos Prudek



How can I manage permissions for imported ZPT files?

Relevant lines from my Product:

from AccessControl import ClassSecurityInfo
class MyClass():
 security=ClassSecurityInfo()
 comment_add_form=PageTemplateFile('zpt/comment_add_form',globals())

My goal is to limit access to comment_add_form to the Authenticated role 
only. comment_add_form is on the filesystem, in my Product's zpt directory.


How can I achieve this? I understand zilch about ClassSecurityInfo...

(My Product is based on JMBoring template)

--
Milos Prudek
http://www.spoxdesign.com - your web usability testing
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] ldap authentication with apache or LDAPUserFolder?

2005-07-11 Thread Jens Vagelpohl


On 11 Jul 2005, at 17:00, Tim Suter wrote:


As some of you know, I am working on an installation of Zope/Zwiki.
What I have inherited is a 2.5.1 Zope/Zwiki on a Debian box.  I am
wanting to move the data from the 2.5.1 to a 2.8.  But here's the
situation.


snip half a mile of stuff

Why don't you just *try* different combinations and see what happens?  
Like, comment out the Apache AuthLDAP stuff and see what happens.


jens


___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )


[Zope] Re: Versioned connectors from ZODB

2005-07-11 Thread Tres Seaver
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Etienne Labuschagne wrote:
 On 7/11/05, Florent Guillaume [EMAIL PROTECTED] wrote:
 
ZODB versions are deprecated, unsupported, buggy and hard to use. Don't
use them.

Florent
 
 
 And as I understand, so are temporary connections too.  That leaves me
 with getting a normal ZODB connection from the pool which I don't
 want to do.
 
 I really need a temporary connection that I can discard.  This
 connection can have a much smaller cache than the normal connections
 as it makes very little difference in the speed of data loading. 
 Second prize is a connection that will only be used by a specific
 process and never used for other processes.  Versions solves this for
 me.
 
 I can check out a connection and keep it aside only for data loading. 
 But this means that I waste precious memory on a connection that does
 not really need to cache the amount of objects that the other
 connections should.  In my case, this translates to using 1GB of RAM
 on one connection that gets used once a day.
 
 Please believe me that I really need a special connection.  For
 those who really want to know why, below is an attempt at an
 explanation why:
 
 In the application that I have written, I want to be able to get
 connections that are not part of the normal connection pool.  Once my
 process is finished, I can store these connections for later use, or
 discard them.  Currently my application uses the normal connections in
 the pool.  The problem is that this process contaminates the cache
 of the connections with objects that are not used in normal client
 application use (I use a thick client).  This means that the client
 applications are extremely slow the next day and that it takes a long
 time before the cache contains the often used objects again.
 
From there the reason why I DON'T want to use the connections for my
 once a day data loading process.
 
 My ZODB contains about 700`000 objects.  A connection caches about
 60`000 objects to give satisfactory client speed.  To start up the
 client before the cache is initialized, takes about 5 minutes.  Once
 the cache is populated, it takes a client seconds to start up.  Data
 loading invalidates all of this, but is worse than a clean cache in
 that it takes long for the new objects in the cache to be flushed
 and replaced by the often used objects again.  Data loading does not
 need such a big cache since it mostly loads data into the ZODB. 
 Unfortunately, the loaded objects also end up in the cache.
 
 Why do I need so many objects in the cache?  Some searches cannot be
 done with a mere ZCatalog search and have to run through a subset of
 all the objects.  These tend to fit nicely in the cache.

Your query would be better served on the zodb-dev list, where Tim Peters
hangs out;  he can probably explain how to get what you want without
guessing.  If I had to guess, I would suggest constructing your
connection programmatically, where you can specify the object cache size
for instance, and then closing / discarding the connection when you are
done.


Tres.
- --
===
Tres Seaver  +1 202-558-7113  [EMAIL PROTECTED]
Palladion Software   Excellence by Designhttp://palladion.com
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFC0p6H+gerLs4ltQ4RAkxMAKCYMC7HKTddmCgog+yip3GZd/AChgCgr0k8
APQ337C2zCxBQBOYIuWFKNU=
=MVtV
-END PGP SIGNATURE-

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] security for ZPT-based Product

2005-07-11 Thread Andreas Pakulat
On 11.Jul 2005 - 18:27:57, Milos Prudek wrote:
 
 
 How can I manage permissions for imported ZPT files?
 
 Relevant lines from my Product:
 
 from AccessControl import ClassSecurityInfo
 class MyClass():
   security=ClassSecurityInfo()
   comment_add_form=PageTemplateFile('zpt/comment_add_form',globals())
 
 My goal is to limit access to comment_add_form to the Authenticated role 
 only. 
 comment_add_form is on the filesystem, in my Product's zpt directory.

add a security.declareProtected('comment_add_form', 'right that is
granted to Authenticated users only')

Where the second string would be one of the rights listed on the
security tab with in the ZMI. If that right is granted to the
authenticated user only, you have your access restrictions.

Andreas

-- 
Don't hate yourself in the morning -- sleep till noon.
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] security for ZPT-based Product

2005-07-11 Thread Jens Vagelpohl


On 11 Jul 2005, at 17:41, Andreas Pakulat wrote:

add a security.declareProtected('comment_add_form', 'right that is
granted to Authenticated users only')

Where the second string would be one of the rights listed on the
security tab with in the ZMI. If that right is granted to the
authenticated user only, you have your access restrictions.


It's the other way around. Permission first, then the method name.

jens

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
http://mail.zope.org/mailman/listinfo/zope-announce

http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] ldap authentication with apache or LDAPUserFolder?

2005-07-11 Thread Marco Bizzarri
What I suspect is that you are working with Zope in Remote User Mode. 
You can verify this in a very quick way, by looking at your instance 
home directory and checking if the access file contains a line like 
'admin:' or 'super:' or whatever, but with no password.


Regards
Marco

Tim Suter wrote:

As some of you know, I am working on an installation of Zope/Zwiki.
What I have inherited is a 2.5.1 Zope/Zwiki on a Debian box.  I am
wanting to move the data from the 2.5.1 to a 2.8.  But here's the
situation.

At the root of the 2.5.1 install there is an acl_users folder that
appears to be the LDAPUserFolder authentication mechanism.  However,
upon looking at the apache config on my Debian box you see this:

VirtualHost X.X.org:80
location /Zope
AuthName Knowledge Access
AuthType Basic
AuthLDAPURL ldap://X.X.org:389/o=X.org?uid?sub?(objectClass=person)
require group cn=caitstaff,ou=Groups,o=X.org
/location
DocumentRoot /var/www
ServerName X.X.org

RedirectMatch ^/$ /Zope/
RewriteEngine on
RewriteCond %{HTTP:Authorization}  ^(.*)
RewriteRule ^/Zope/(.*) /usr/lib/cgi-bin/Zope/$1 
[e=HTTP_CGI_AUTHORIZATION:%1,t=application/x-httpd-cgi,l]

/VirtualHost

I am trying to figure out what is authenticating the user, LDAPUserFolder or 
the AuthLDAP in Apache?

In the root folder of the 2.5.1 install, there is our knowledge folder, argyle, 
inventory, a public folder.  Those are the custom folders
we created.
The Zope install folders are the control panel, temp_folder, Tutorial, test.  
There is an acl_users folder, but
it is not the original and has the LDAPUserFolder configuration in it.  

After authentication, the user is directed to the index_html which is in the root folder.  The links present on this 
page point to our available knowledge bases (the custom folders we created).  As well, it has a manage Zope link.  Only certain users can access this link.

Anyone authenticated to the knowledge bases though, can add, edit or delete 
content.
This is the preferred method of this application as we want all users here to 
be able to openly collaborate.

I need to authenticate the same way on the new install as the old one.  Here is 
the dilemma though.
On the new install of 2.8, it rests on an RHEL4 server.  On this apache, I have 
to use authZLDAP
as there is a documented bug with RedHat for the AuthLDAP.

There are years of data collected in this knowledge base that I don't want to lose.  So I am being 
about as careful as I can be...maybe too careful.  


So, question wise...I am wondering what authentication to use.  I know that 
LDAPUserFolder appears
to be the way to go, but I don't know if that is what is actually happening.  By the looks of the above 
apache configuration, could there be some sort of redirection happening?


Tim

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce

 http://mail.zope.org/mailman/listinfo/zope-dev )


begin:vcard
fn:Marco Bizzarri
n:Bizzarri;Marco
org:Icube S.r.l.
adr:;;via Ridolfi 15;Pisa;PI;56124;Italy
email;internet:[EMAIL PROTECTED]
title:Amministratore Delegato
tel;work:+39-050-970-207
tel;fax:+39-050-3136-588
tel;cell:+39-348-640-4861
x-mozilla-html:FALSE
url:http://notenotturne.blogspot.com/
version:2.1
end:vcard

___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] ldap authentication with apache or LDAPUserFolder?

2005-07-11 Thread Tim Suter
Sorry Marco the reply to all button eluded me once again:

I deleted the access file and recreated it so I could get ready to
delete all instances of the old LDAPUserFolder.  This has to been done
prior to migration of Data.fs as the new Zope 2.8 isn't compatible with
the old LDAPUserFolder.

Now, after commenting out the apache lines below:

  #location /Zope
#AuthName Knowledge Access
#AuthType Basic
#AuthLDAPURL ldap://X.X.org:389/o=X.org?uid?sub?
(objectClass=person)
#require group cn=caitstaff,ou=Groups,o=X.org
#/location

I can type in the URL for the knowledge base and it takes me straight to
the index_html page without authentication unlike before.  However,
after clicking the Manage Zope link, then you must enter in credentials,
in order to access the ZMI of which the root folder contains the
acl_users folder with the LDAPUserFolder configuration.  Does this tell
me that LDAPUserFolder is being handed the credentials via apache
through some sort of redirect?

Tim

On Mon, 2005-07-11 at 18:56 +0200, Marco Bizzarri wrote:
 What I suspect is that you are working with Zope in Remote User Mode. 
 You can verify this in a very quick way, by looking at your instance 
 home directory and checking if the access file contains a line like 
 'admin:' or 'super:' or whatever, but with no password.
 
 Regards
 Marco
 
 Tim Suter wrote:
  As some of you know, I am working on an installation of Zope/Zwiki.
  What I have inherited is a 2.5.1 Zope/Zwiki on a Debian box.  I am
  wanting to move the data from the 2.5.1 to a 2.8.  But here's the
  situation.
  
  At the root of the 2.5.1 install there is an acl_users folder that
  appears to be the LDAPUserFolder authentication mechanism.  However,
  upon looking at the apache config on my Debian box you see this:
  
  VirtualHost X.X.org:80
  location /Zope
  AuthName Knowledge Access
  AuthType Basic
  AuthLDAPURL ldap://X.X.org:389/o=X.org?uid?sub?
(objectClass=person)
  require group cn=caitstaff,ou=Groups,o=X.org
  /location
  DocumentRoot /var/www
  ServerName X.X.org
  
  RedirectMatch ^/$ /Zope/
  RewriteEngine on
  RewriteCond %{HTTP:Authorization}  ^(.*)
  RewriteRule ^/Zope/(.*) /usr/lib/cgi-bin/Zope/$1
[e=HTTP_CGI_AUTHORIZATION:%1,t=application/x-httpd-cgi,l]
  
  /VirtualHost
  
  I am trying to figure out what is authenticating the user,
LDAPUserFolder or the AuthLDAP in Apache?
  
  In the root folder of the 2.5.1 install, there is our knowledge
folder, argyle, inventory, a public folder.  Those are the custom
folders
  we created.
  The Zope install folders are the control panel, temp_folder,
Tutorial, test.  There is an acl_users folder, but
  it is not the original and has the LDAPUserFolder configuration in
it.  
  
  After authentication, the user is directed to the index_html which
is in the root folder.  The links present on this 
  page point to our available knowledge bases (the custom folders we
created).  As well, it has a manage Zope link.  Only certain users can
access this link.
  Anyone authenticated to the knowledge bases though, can add, edit or
delete content.
  This is the preferred method of this application as we want all
users here to be able to openly collaborate.
  
  I need to authenticate the same way on the new install as the old
one.  Here is the dilemma though.
  On the new install of 2.8, it rests on an RHEL4 server.  On this
apache, I have to use authZLDAP
  as there is a documented bug with RedHat for the AuthLDAP.
  
  There are years of data collected in this knowledge base that I
don't want to lose.  So I am being 
  about as careful as I can be...maybe too careful.  
  
  So, question wise...I am wondering what authentication to use.  I
know that LDAPUserFolder appears
  to be the way to go, but I don't know if that is what is actually
happening.  By the looks of the above 
  apache configuration, could there be some sort of redirection
happening?
  
  Tim
  
  ___
  Zope maillist  -  Zope@zope.org
  http://mail.zope.org/mailman/listinfo/zope
  **   No cross posts or HTML encoding!  **
  (Related lists - 
   http://mail.zope.org/mailman/listinfo/zope-announce
   http://mail.zope.org/mailman/listinfo/zope-dev )
 



___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )


Re: [Zope] Versioned connectors from ZODB

2005-07-11 Thread Tim Peters
[Etienne Labuschagne]
 ...
 I really need a temporary connection that I can discard.  This
 connection can have a much smaller cache than the normal connections
 as it makes very little difference in the speed of data loading.
 Second prize is a connection that will only be used by a specific
 process and never used for other processes.  Versions solves this for
 me.

Maybe like death would solve my problem with overdue taxes wink.

Connection pools are associated with DB instances, so if you want
connections with different characteristics, create another DB
instance.  Like, e.g., in the ZODB 3.2 line,

otherdb = ZODB.DB(storage, cache_size=100, pool_size=2)

Then connections obtained via otherdb.open() will hang if two threads
already have connections from `otherdb` (that's the effect of
`pool_size`), and will have ZODB memory caches that strive to keep no
more than 100 objects in memory across transaction boundaries (the
effect of `cache_size`).

This is easiest if you're using ZEO (ClientStorage), because doing
otherdb.close() also calls close() on the DB's storage.   If you,
e.g., share a FileStorage directly across multiple DBs, closing any
one of the DBs will close the FileStorage across all the DBs using
that FileStorage.  ZEO makes it easy to open multiple ClientStorage's
on top of of a single FileStorage, which can be closed
independently.  If you never close otherdb, this isn't an issue.

This answer assumes you're using ZODB directly.  I don't know details
of how to spell it from within a Zope application (if that's what you
need -- unsure).
___
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists -
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )