Re: [Zope] Granting access by reading http headers (Consulting opportunity)
Did I ask if it accepted cookie? No, I asked if it accepts http basic auth. Care to answer my question? ;-) Yes. The Google Mini accepts http basic auth. ___ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] Granting access by reading http headers (Consulting opportunity)
If anyone here has the consulting expertise to help implement a solution, please email me separately at m + schnapp + service + marc + dot + com. (See my elaborations below) Chris Withers wrote: Marc Schnapp wrote: We're running Plone for internal departmental use. I'm going to lock down most of the content, requiring a login to view sensitive documents. But I also want our Google Mini appliance to crawl all content. Google Mini can do http basic auth, right? If so, you're fine, just put in the basic auth details and define a user in acl_users. Provided the mini presents the credentials without first being challenged by a 401, you'll be fine... Marc responds: 1) The Google Mini does not accept cookies. 2) Plone barfs if you try tricks like adding a query string to URLs. 1) Is this approach viable? (What are the pitfalls?) I'd worry about headers being spoofed... Marc responds: I don't have to worry about headers being spoofed. The host lives in our dedicated data center behind a VPN concentrator requiring RSA authentication. No one gets to the box unless we already have cleared them through two-phase authentication. 2) What python module is consulted to determine access rights when a page request is made? The user folder, in your case it'll be the hell known as GRUF. Swap that out for the hell known as PAS ;-) 2) Is this difficult to implement if one has rudimentary Python skills? Yes. cheers, Chris ___ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] Granting access by reading http headers (Consulting opportunity)
Thanks for the approach! We will be using Apache as the proxy. Question: So if the conditions match: client-ip = your special crawler and useragent = your crawler - RequestHeader set Cookie ... Am I writing a cookie that Plone would recognize as the Google mini Plone user? Would you know where is the documentation for the user cookie? Ah, and btw. maybe you just use ZCatalog and skip using external crawler :-) Of course I could do that. ;) But we are hosting static html pages served up by Apache separately and I want an integrated search facility with topnotch filters and rendering for PDF and MS Office files. ___ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
[Zope] Granting access by reading http headers
We're running Plone for internal departmental use. I'm going to lock down most of the content, requiring a login to view sensitive documents. But I also want our Google Mini appliance to crawl all content. The problem is that the appliance does not accept cookies. So Plone and Zope don't recognize a user account as the crawler attempts to move through links. I am thinking of granting the Google Mini appliance "transparent" access by reading the http headers of incoming requests and granting access if: - the header includes the correct client string AND - The IP address of the requesting machine is owned by the Google Mini host. Questions: 1) Is this approach viable? (What are the pitfalls?) 2) What python module is consulted to determine access rights when a page request is made? 2) Is this difficult to implement if one has rudimentary Python skills? (Or is there already sample code out there to do something like this? I couldn't find any.) ___ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
[Zope] Data.fs Windows to Linux?
I thought that I would back up my data.fs by copyting the entire Linux /var directory to a Windows machine with spare disk space and then creating a ZIP file on the Windows machine. There was a problem on the Linux machine, so I figured there'd be no problem by simply copying the data.fs (via a Samba share) back from Windows - Linux. It seems that when Zope starts back up, it keeps attempting to deal with the alien database and then shuts down. The Same Database File Works Perfectly With A Windows Plone/Zope Installation - I installed a Windows version of Plone (with Zope of course) and that same data.fs file works just fine in the Windows environment. Questions: 1) Am I without hope of ever running the database under Linux again? 2) What is the reason that the database goes from Linux - Windows OK but not in the other direction? 3) MOST IMPORTANT: Is there a technique I can use to tweak the database file or recover it so that it is Linux-friendly? ___ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )
