Re: [Zope] /Manage access from some networks

2009-12-10 Thread Jeff Peterson
http://httpd.apache.org/docs/1.3/mod/mod_access.html

--
Jeffrey D Peterson
Webmaster
Crary Industries, Inc.

From: zope-boun...@zope.org [mailto:zope-boun...@zope.org] On Behalf Of iarly 
selbir | ski0s
Sent: Thursday, December 10, 2009 6:13 AM
To: zope@zope.org
Subject: [Zope] /Manage access from some networks

That's possible? I want allow the access to /manage of my zope instances only 
for some know networks, My zope has Apache as frontend.

Thanks in advance for any help.


Regards,

- -
iarly selbir | ski0s

:wq!
___
Zope maillist  -  Zope@zope.org
https://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 https://mail.zope.org/mailman/listinfo/zope-announce
 https://mail.zope.org/mailman/listinfo/zope-dev )


RE: [Zope] manage

2000-09-01 Thread neeloy_saha

Hi dieter,

Thx for ur reply.  

The child window  pop ups when u do http://localhost:8080/manage . One
enters the username and password there. That is validated against the
acl_user folders member names or if it is a superuser who installed zope it
validates it against the access file.

I want to look at the source code and understand the authentication
mechanism.That's why i want to know the following:-

1.what is the python file which pops up that child window for entering
username and password ?
2.After u give the username and password what is the file / module name
against which  the username and password is authenticated.
3.what is this 'manage'? method/module???

Thx in advance

-neeloy



-Original Message-
From: Dieter Maurer [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 01, 2000 1:34 AM
To: neeloy_saha
Cc: '[EMAIL PROTECTED]'
Subject: Re: [Zope] manage


neeloy_saha writes:
  when i do http://localhost:8080/manage it pops up a login window which
asks
  for username and password. what is the entry point after that??
That is exactly what one would expect.

Enter the username and password that was assigned during installation
or that you set with

python zpasswd.py access

  Is there a way of running zope with debugger?? 
There is "Test.py" in "lib/python/ZPublisher".
It will, however, not help you with the above problem.


Dieter

___
Zope maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope-dev )




RE: [Zope] manage

2000-09-01 Thread Holger Lehmann

Am Fre, 01 Sep 2000 schrieben Sie:
 Hi dieter,
 
 Thx for ur reply.  
 
 The child window  pop ups when u do http://localhost:8080/manage . One
 enters the username and password there. That is validated against the
 acl_user folders member names or if it is a superuser who installed zope it
 validates it against the access file.
 
 I want to look at the source code and understand the authentication
 mechanism.That's why i want to know the following:-
 
 1.what is the python file which pops up that child window for entering
 username and password ?

It is your web browser, not a python script :-) It does that because it got a
"401 authentication required" response from zope.

 2.After u give the username and password what is the file / module name
 against which  the username and password is authenticated.

Well, username/password will be send together with all subsequent requests to
zope. Zope veryfies if username and password match against the info retreived
from the acl_users folder. What happens there depends on what object
*is* acl_users (i.e. Generic User Folder, mySQLuser, ACL Manager, Login Manager
)

 3.what is this 'manage'? method/module???

Well, that is the way to get the management screen. Source can be viewed at
zope-install/lib/python/OFS/manage.dtml

 
 Thx in advance
 
 -neeloy

- Holle

 
 
 
 -Original Message-
 From: Dieter Maurer [mailto:[EMAIL PROTECTED]]
 Sent: Friday, September 01, 2000 1:34 AM
 To: neeloy_saha
 Cc: '[EMAIL PROTECTED]'
 Subject: Re: [Zope] manage
 
 
 neeloy_saha writes:
   when i do http://localhost:8080/manage it pops up a login window which
 asks
   for username and password. what is the entry point after that??
 That is exactly what one would expect.
 
 Enter the username and password that was assigned during installation
 or that you set with
 
   python zpasswd.py access
 
   Is there a way of running zope with debugger?? 
 There is "Test.py" in "lib/python/ZPublisher".
 It will, however, not help you with the above problem.
 
 
 Dieter
 
 ___
 Zope maillist  -  [EMAIL PROTECTED]
 http://lists.zope.org/mailman/listinfo/zope
 **   No cross posts or HTML encoding!  **
 (Related lists - 
  http://lists.zope.org/mailman/listinfo/zope-announce
  http://lists.zope.org/mailman/listinfo/zope-dev )
-- 
---
catWorkX GmbH Hamburg
Dipl.-Ing. Holger Lehmann
Stresemannstr. 364
22761 Hamburg
Tel: +49 40 890 646-0
Fax: +49 40 890 646-66
mailto:[EMAIL PROTECTED]
http://www.catworkx.de
http://www.catbridge.de

___
Zope maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope-dev )




RE: [Zope] manage

2000-09-01 Thread Dieter Maurer

neeloy_saha writes:
   authentication 
  1.what is the python file which pops up that child window for entering
  username and password ?
In plain vanilla Zope (i.e. without GUF, LoginManager or some other
login catcher)
Zope simply raises an Unauthorized exception.
This is turned into an HTTP Unauthorized response.
Your browser, upon receipt of such a response, pops up the dialog
and ask you for username and password.
It then automatically reissues the request.

  2.After u give the username and password what is the file / module name
  against which  the username and password is authenticated.
For any request, Zope traverses the hierarchical WebSite object
guided by the request's URL. At the URL's end, it reaches
some object (or has raised a "NotFound" exception).
From that object, Zope looks back along its path for
objects that are able to authenticate some users.
Usually, these are objects that contain a "user folder", usually
called "acl_users".
Authentication is done by such a "user folder".
You find the code near the end of "ZPublisher.BaseRequest.traverse".

A user folder has a method "validate".
It gets the request, authentication information and
(optionally) the list of roles necessary to access the target
object. It returns a user object, if it can one authenticate
for the given authentication information and with the required
roles, otherwise, it returns None.
If it return None, Zope looks furhter up in the path.
If it reaches the end without being able to authenticate
the user, it raises an Unauthorized exception (this leads to 1) above).

You find Zope's vanilla user folder in "AccessControl.User.UserFolder".

  3.what is this 'manage'? method/module???
There is none.



Dieter

___
Zope maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope-dev )




Re: [Zope] manage

2000-08-31 Thread Dieter Maurer

neeloy_saha writes:
  when i do http://localhost:8080/manage it pops up a login window which asks
  for username and password. what is the entry point after that??
That is exactly what one would expect.

Enter the username and password that was assigned during installation
or that you set with

python zpasswd.py access

  Is there a way of running zope with debugger?? 
There is "Test.py" in "lib/python/ZPublisher".
It will, however, not help you with the above problem.


Dieter

___
Zope maillist  -  [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://lists.zope.org/mailman/listinfo/zope-announce
 http://lists.zope.org/mailman/listinfo/zope-dev )