Re: [Zope-dev] Zope 2.6 planning - call for contributors!
Anthony Baxter wrote: > > >>> seb bacon wrote > > > [CallProfiler] > > FWIW, my own opinion is that it should not take the 'MonkeyPatch' > > approach. > > Why? Any other approach means a slowdown in the Zope code regardless of > whether profiling is turned on or off... monkeypatching means you end > up with zero slowdown when not profiling. ...and in this case, I wouldn't call it MonkeyPatch-ing, just taking advantage of Python's extremely dynamic nature for a very good cause. cheers, Chris ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
[Zope-dev] Re: I'm locked out of managing my CMF folders, because it asks me to log in and the password doesn't work.
Hmm, after looking at the logs, it seems like it's not passing authorization info through the virtual host proxy rewrite rule. When I set Apache up to use a proxy rewrite rule, it asks me to log in instead of showing the folder manager, and the hits come from anonymous: [apache configuration for the name based virtual server DonHopkins.com] RewriteRule ^/(.*) http://www.DonHopkins.com:8080/Don/Hopkins/$1 [p] [zope log of clicking in logged in zope manager tree view on "/Don/Hopkins" cmf folder, which contains a virtual host monster] 216.175.91.16 - dhopkins [03/Mar/2002:23:33:01 -0700] "GET /Don/Hopkins/manage_workspace HTTP/1.1" 302 473 "http://www.donhopkins.com:8080/manage_menu"; "Mozilla/4.0 (compatible; MSIE 5.5; W\ indows 98)" 216.218.252.133 - Anonymous [03/Mar/2002:23:33:01 -0700] "GET /Don/Hopkins/manage_main HTTP/1.0" 302 617 "http://www.donhopkins.com:8080/manage_menu"; "Mozilla/4.0 (compatible; MSIE 5.5; Win\ dows 98)" 216.218.252.133 - Anonymous [03/Mar/2002:23:33:01 -0700] "GET /Don/Hopkins/login_form?came_from=http://www.DonHopkins.com/Don/Hopkins/mana ge_main&retry= HTTP/1.0" 200 4046 "http://www.donho\ pkins.com:8080/manage_menu" "Mozilla/4.0 (compatible; MSIE 5.5; Windows 98)" 216.218.252.133 - Anonymous [03/Mar/2002:23:33:01 -0700] "GET /Don/Hopkins/default_stylesheet HTTP/1.0" 200 5513 "http://www.donhopkins.com/Don/Hopkins/login_form?came_from=http%3A//www.Don \ Hopkins.com/Don/Hopkins/manage_main&retry=" "Mozilla/4.0 (compatible; MSIE 5.5; Windows 98)" Notice that the proxy requests come from 216.218.252.133 [the server's ip] as Anonymous. Is the auth info not getting passed? But when I change the apache rewrite rule to use external redirect instead of internal proxy, it works and shows me the folder manager, and the hits come from the right place, but the url in the browser is unnecessarily long and nasty. RewriteRule ^/(.*) http://www.DonHopkins.com:8080/Don/Hopkins/$1 [R] 216.175.91.16 - dhopkins [03/Mar/2002:23:35:03 -0700] "GET /Don/Hopkins/manage_workspace HTTP/1.1" 302 473 "http://www.donhopkins.com:8080/manage_menu"; "Mozilla/4.0 (compatible; MSIE 5.5; W\ indows 98)" 216.175.91.16 - dhopkins [03/Mar/2002:23:35:04 -0700] "GET /Don/Hopkins/manage_main HTTP/1.1" 200 32200 "http://www.donhopkins.com:8080/manage_menu"; "Mozilla/4.0 (compatible; MSIE 5.5; Wind\ ows 98)" I've been able to get it to work with external redirects instead of internal proxy, but the path displayed in the manager doubles it up: Don/Hopkins/Don/Hopkins ... So I put in the first rewrite rule with the ^/Don/Hopkins prefix, and that eliminated the weird double path prefix behavior I was getting. RewriteRule ^/Don/Hopkins/(.*) http://www.DonHopkins.com:8080/Don/Hopkins/$1 [R] Is there a better way for me to rewrite zope virtual host requests, so the authentication headers go through properly? I want to have apache handle https and logging, but let zope handle its own user authentication. And I want the url of the web browser to be short and sweet, not showing :8080 or the virtual host subdirectories. Should I be using fastcgi (or slow cgi) instead of internal proxy, and trying to trick it into passing the authorization in its own way? Thanks a lot for the help! There are so many options it's quite overwhelming... -Don - Original Message - From: "Leonardo Rochael Almeida" <[EMAIL PROTECTED]> To: "Don Hopkins" <[EMAIL PROTECTED]> Cc: "Zope Developers" <[EMAIL PROTECTED]> Sent: Sunday, March 03, 2002 9:14 PM Subject: Re: [Zope-dev] I'm locked out of managing my CMF folders, becauseit asks me to log in and the password doesn't work. > On Mon, 2002-03-04 at 01:36, Don Hopkins wrote: > > I am now locked out my CMF site, and I can't figure out how to get back in. > > [...] > > I can log into the top level Zope manager, and look at the Zope tree. I just > > can't manage_edit my CMF site. > > When I click on a CMF site in the tree on the left, it does not edit the > > directory view in the main frame. > > Instead, it goes to the CMF login page in that frame. > > Are you using Mozilla, Netscape >= 6.0 or another mozilla based browser? > If so, you might be hitting a little odd-but-rfc-allowed mozilla > behaviour where, even after asking the user for basic-auth credentials > for a protected page, it doesn't send them for other protected pages in > the same domain until the web server has responded with > 'authorization-required' for every one of them. Because of that, when > you're viewing a page in Zope that is protected by cookie based > authentication, mozilla will not send basic-auth credentials at first, > causing the cookie login form to kick in before zope issues an > 'authorization-required' response. > > I hope this explanation is not too confusing :-) > > Anyway, try accessing your site with another browser to see if the > problem persists. Konqueror, for instance, doesn't have this problem. ___ Zope-Dev maillist - [EMAIL PROTECTE
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
From: "Chris Withers" <[EMAIL PROTECTED]> > Gary Poster wrote: > > > > If there is any interest in spiffing the Virtual Host Folder up for > > inclusion in Zope 2.6, I'll do the work. It requires Ordered Folder 0.5.1, > > and needs just a bit more spiffing. > > Why does it require ordered folder? What does that have to do with virtual hosting? Well--the best answer is to suggest you look at it. The next best answer is to say that the ability to order virtual host rules (as in, for instance, the Apache httpd.conf virtual host section) is very convenient. And the full-blown I-can't-help-but-give-an-example is this. The Virtual Host Folder (hereafter VHF) holds implementations of IHost. Each IHost implementation is responsible for mappings to one virtual Zope root. (There is an exception but I'm not going in to it here). So if, for instance, your site is mysite.com and you wanted to have all subdomains (www.mysite.com, anything.mysite.com, etc.) go to a given zope root then you create one host object that uses a regular expression like ^(.*\.|)mysite.com$ and points to your desired virtual zope root. Then, if you in fact want certain subdomains at mysite.com to have a different Zope root, create a new host pointing to your alternate root and use a simple match like special.mysite.com Move this host higher than the catch-all host in the VHF using the OrderedFolder controls and you are set to go. While I did in fact roll my own ordered folder-like mix-in for this purpose initially (so I would have no dependencies), using OrderedFolder allows developers to create their own personalized implementations of the IHost interface (somebody wanted to hook their DNS and email system to their hosts, for instance, and this is not easily generalized) and just drop the new implementations (or subclasses) into the Products folder without making any changes to the VirtualHostFolder distribution itself. And by the way: TO DO list on the VHF before it would be any kind of core candidate: 1) TESTS 2) Some kind of fish bowl to more rigorously plan an API--not convinced I can get critical mass of interest behind it to make it worthwhile though... maybe I'll get around to it and we'll see. 3) OrderedFolder has some ZBabel-related problems on one of my installations; not sure of the cause/fix yet. Gary ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] I'm locked out of managing my CMF folders, becauseit asks me to log in and the password doesn't work.
On Mon, 2002-03-04 at 01:36, Don Hopkins wrote: > I am now locked out my CMF site, and I can't figure out how to get back in. > [...] > I can log into the top level Zope manager, and look at the Zope tree. I just > can't manage_edit my CMF site. > When I click on a CMF site in the tree on the left, it does not edit the > directory view in the main frame. > Instead, it goes to the CMF login page in that frame. Are you using Mozilla, Netscape >= 6.0 or another mozilla based browser? If so, you might be hitting a little odd-but-rfc-allowed mozilla behaviour where, even after asking the user for basic-auth credentials for a protected page, it doesn't send them for other protected pages in the same domain until the web server has responded with 'authorization-required' for every one of them. Because of that, when you're viewing a page in Zope that is protected by cookie based authentication, mozilla will not send basic-auth credentials at first, causing the cookie login form to kick in before zope issues an 'authorization-required' response. I hope this explanation is not too confusing :-) Anyway, try accessing your site with another browser to see if the problem persists. Konqueror, for instance, doesn't have this problem. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
[Zope-dev] I'm locked out of managing my CMF folders, because it asks me to log in and the password doesn't work.
I am now locked out my CMF site, and I can't figure out how to get back in. None of my passwords work any more. Recently I had to reinstall the operating system and change my unix passwords. But now I can't get back into my Zope CMF sites in order to change the Zope passwords. I can log into the top level Zope manager, and look at the Zope tree. I just can't manage_edit my CMF site. When I click on a CMF site in the tree on the left, it does not edit the directory view in the main frame. Instead, it goes to the CMF login page in that frame. I try to log in, and it my password simply does not work. It keeps coming back to the cmf login page. I have had this problem of being forced to log into CMF before (even though I was already logged into the manager), but now my password doesn't work any more. The emergency user password doesn't work either. I tried hacking the python code in AuthEncoding pw_validate to return 1, and that still doesn't let me in. What is going on? Is there any way for me to disable the passwords and get into the cmf folder to see what's wrong? Thanks in advance! -Don ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
> My main concern is the use of monkeypatching in the core makes it difficult > for someone else to release a product that also MPs without them worrying > about whether something has already patched code. Especially when we're > talking about MP'ing so many core Zope objects (yes, I count >1 as "so many" > :) Multiple monkeypatches should be fine, so long as each renames the __call__ method to something unique. > I think the performance hit is really quite minimal for two if statements at > the entry and exit point(s) of a function to turn the behaviour on and off. I'm not convinced. Those small increments of performance really add up. Look at how Python's performance over time has degraded as one after another small bits of cruft accumulated. It's also not just an if statement, it's a global lookup. > ps. don't forget Anthony, our first reaction when we both thought of this > approach was *shudder* :) Sure, but after tinkering a bit, and compared to the original hack that I did, this is sooo much cleaner. The amount of work required to instrument a new object is close to zero. Anthony -- Anthony Baxter <[EMAIL PROTECTED]> It's never to late to have a happy childhood. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
On Mon, 4 Mar 2002 14:40, Casey Duncan wrote: > I agree, monkey patches are perfect for this. That > makes them totally transparent to the application and > Zope for that matter. There's nothing wrong with them > in the right application. My main concern is the use of monkeypatching in the core makes it difficult for someone else to release a product that also MPs without them worrying about whether something has already patched code. Especially when we're talking about MP'ing so many core Zope objects (yes, I count >1 as "so many" :) I think the performance hit is really quite minimal for two if statements at the entry and exit point(s) of a function to turn the behaviour on and off. Richard ps. don't forget Anthony, our first reaction when we both thought of this approach was *shudder* :) ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
--- Anthony Baxter <[EMAIL PROTECTED]> wrote: > > >>> seb bacon wrote > > > [CallProfiler] > > FWIW, my own opinion is that it should not take > the 'MonkeyPatch' > > approach. > > Why? Any other approach means a slowdown in the Zope > code regardless of > whether profiling is turned on or off... > monkeypatching means you end > up with zero slowdown when not profiling. > > Anthony I agree, monkey patches are perfect for this. That makes them totally transparent to the application and Zope for that matter. There's nothing wrong with them in the right application. -Casey __ Do You Yahoo!? Yahoo! Sports - sign up for Fantasy Baseball http://sports.yahoo.com ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
>>> seb bacon wrote > > [CallProfiler] > FWIW, my own opinion is that it should not take the 'MonkeyPatch' > approach. Why? Any other approach means a slowdown in the Zope code regardless of whether profiling is turned on or off... monkeypatching means you end up with zero slowdown when not profiling. Anthony -- Anthony Baxter <[EMAIL PROTECTED]> It's never to late to have a happy childhood. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
RE: [Zope-dev] Zope 2.6 planning - call for contributors!
Perhaps synchronization over ZEO as well as XML-RPC? Thoughts? Sean -Original Message- From: Andy McKay [mailto:[EMAIL PROTECTED]] Sent: Sunday, March 03, 2002 5:04 PM To: [EMAIL PROTECTED] Subject: Re: [Zope-dev] Zope 2.6 planning - call for contributors! > I'd like to see the ZSyncer Product, or a variant thereof, included in > Zope by default. That is, I'd like "Synchronization", to a be a default > property of Zope objects, so that objects/content can be pushed and > pulled between two Zope installations. Thanks for the enthusiasm but its still too hacky to go into the core. Ideally I'd rather put in the time so this is more transparent in Zope 3. -- Andy McKay ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope ) ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
> Ive never really understood the motivation for wanting https support > direct in Zope ZServer isnt robust enough to be exposed to the raw > internet without risk. Today (and perhaps for the forseeable future, > because its not clear that Zope want to take on the responsibility of ZServer may not be as robust as Apache or Squid but many, many people expose raw to the internet without problem (and compare that to other products from Redmond). The main motivation is that many people use Zope as a single solution, by installing Zope they can get everything they need to get a web site. By having the ZMI only available through HTTPS by default for example will definitely increase security and make Zope a better all in package. It obviously won't help the enterprise customer. Is there actually a huge amount of risk in this? The patches are there and seem to work ok most of the work seems to have been done already... -- Andy McKay ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
> I'd like to see the ZSyncer Product, or a variant thereof, included in > Zope by default. That is, I'd like "Synchronization", to a be a default > property of Zope objects, so that objects/content can be pushed and > pulled between two Zope installations. Thanks for the enthusiasm but its still too hacky to go into the core. Ideally I'd rather put in the time so this is more transparent in Zope 3. -- Andy McKay ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
On Fri, 1 Mar 2002 21:25, seb bacon wrote: > > > Absolutely ... and I would also like to see Richards excellent Call > > > Profiler service become part of the core. > > > > I'm definitely putting the profiler into 2.6 - there's just an open > > question of where it gets put. The question was asked on zope-coders, and > > got no response. I figure if no-one answers within a week of my original > > posting, I'll just check it in as a product. > > FWIW, my own opinion is that it should not take the 'MonkeyPatch' > approach. That's my opinion too, but I have had no feedback from zope-coders... Richard ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] member properties disappear
Howard Zhang wrote: > > Does anybody can tell me why? You'll have better luck asking on [EMAIL PROTECTED] zope-dev is for development of Zope itself, not development of appilcations with Zope. cheers, Chris ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Zope 2.6 planning - call for contributors!
Gary Poster wrote: > > If there is any interest in spiffing the Virtual Host Folder up for > inclusion in Zope 2.6, I'll do the work. It requires Ordered Folder 0.5.1, > and needs just a bit more spiffing. Why does it require ordered folder? What does that have to do with virtual hosting? cheers, Chris ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
[Zope-dev] member properties disappear
Hi all, We develop a Website use Zope 2.4.3 and CMF 1.1. Today when I export the member's properties. I found some member's properties were disappeared. The reason I found is these member records stored in portal_memberdata were lose, but acl_users still has all portal user object( for example, there is a user named howard in portal acl_users, but no record id is howard stored in portal_memberdata ). I restored the yesterday's backup. Everything looks ok. Does anybody can tell me why? Thanks a lot Howard ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )