Re: [Zope-dev] Subclassing LoginManager
Phillip J. Eby writes: > At 04:37 PM 5/22/00 -0400, Dan L. Pierson wrote: > >Never mind. I found the bug of mine. > > What was it? I saw your question and this answer at the same time, and now > I'm curious. :) When I copied the code that canonicalizes user roles and domains from GenericUserSource, I forgot to add an 'import types'. Fortunately the copied code did a good job of catching exceptions and setting the roles to ['Anonymous'] :-) Patch follows in next message. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Subclassing LoginManager
At 04:37 PM 5/22/00 -0400, Dan L. Pierson wrote: >Never mind. I found the bug of mine. What was it? I saw your question and this answer at the same time, and now I'm curious. :) >I now hope to get a PTK/LoginManager patch out tomorrow. Fantastic. I really hope to actually have time to *look* at the PTK again some week soon. :) ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Subclassing LoginManager
Never mind. I found the bug of mine. I now hope to get a PTK/LoginManager patch out tomorrow. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Subclassing LoginManager
Phillip J. Eby writes: > LoginManager will behave just like your outline, if you give it a > BasicCookie LoginMethod, and a BasicAuth LoginMethod, in that order. > LoginManager does not climb up the acquisition hierarchy, as that is > properly the province of ZPublisher to do. It will provide the anonymous > user, if it is a top-level user folder. You're right if course. I just didn't realize that the PTK was set up to require cookie logins, so I was trying to avoid them and solve the simpler piece of the problem first :-( Oh well, that's working fine now. I can log in, but it looks like permissions aren't getting set/propagated correctly: The initial management user is created with roles: ['Member', 'Manager', 'Reviewer'] My PersistentUserSource returns this list correctly as the roles list. All of the following are in Zope 2.1.6: 1. If I create the Portal as superuser with the Portal manager having the same username as me, then log in to the portal in a new browser I can see my folder but don't even have the permission to create new objects in it. 2. If I create the Portal as me, a site Manager, with the Portal manager having my user name, then log in as above, I can create objects but clearly don't have Reviewer rights. 3. If I create the Portal as me with the Portal manager having another username, then log in as above, it's just like the first case. I can see my folder but can't create anything in it. Any idea what I'm doing wrong now? ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] Subclassing LoginManager
At 06:02 PM 5/19/00 -0400, Dan L. Pierson wrote: >LoginManager.LoginManager.validate. A rough sketch is like this: > >if req_has('__ac'): >... handle cookie login ... > >if req_has('__ac_name') and req_has('__ac_password'): >... handle explicit login ... > >if auth and lower(auth[:6]) != 'basic': >... do basic authentication ... > >... climb up the acquisition hierarchy ... > >... try anonymous ... LoginManager will behave just like your outline, if you give it a BasicCookie LoginMethod, and a BasicAuth LoginMethod, in that order. LoginManager does not climb up the acquisition hierarchy, as that is properly the province of ZPublisher to do. It will provide the anonymous user, if it is a top-level user folder. >I know that the official way to do most of this sort of thing with >LoginManager is by defining new LoginMethods, but I just don't see how >to make LoginManager even try the LoginMethods at the correct time >without overriding validate. > >Am I on the right track here? Not as far as I can see. You shouldn't even need any custom LoginMethods, the out-of-the-box ones should work just fine. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
[Zope-dev] Subclassing LoginManager
OK, time for another Zen fix :-) It looks like I've almost got PTK working with the latest LoginManager. The remaining problem is that the login form doesn't work. I've finally figured out why. PTKBase.MemberFolder.MemberFolderBase.validate is much hairier than LoginManager.LoginManager.validate. A rough sketch is like this: if req_has('__ac'): ... handle cookie login ... if req_has('__ac_name') and req_has('__ac_password'): ... handle explicit login ... if auth and lower(auth[:6]) != 'basic': ... do basic authentication ... ... climb up the acquisition hierarchy ... ... try anonymous ... I know that the official way to do most of this sort of thing with LoginManager is by defining new LoginMethods, but I just don't see how to make LoginManager even try the LoginMethods at the correct time without overriding validate. Am I on the right track here? Dan Pierson ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )