Re: [Zope-dev] LM and user objects
- Original Message - From: "Dan L. Pierson" <[EMAIL PROTECTED]> To: "Chip Vanek" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Wednesday, June 07, 2000 12:47 PM Subject: RE: [Zope-dev] LM and user objects > Chip Vanek writes: > > I also tried to get the patch working with 2.2CVS PTK CVS and had little luck. > > I also needed to manually apply the patch and worked through the errors until > > I got a security violation with the PTK. I was no longer in any way able to > > access any of my test portals using the management interface. I needed to > > back the patch out and get to plain 2.21a and PTK cvs to even get a ZODB > > portal working. > > Interesting. I've been avoiding 2.2 until the new security model gets > some more bugs worked out. Unfortunately, this means I'm not > surprised that you had problems... LM seems to be pretty happy on the whole with 2.2 at this point. > We seem to have consensus on this. Looks like Kevin's taken over the > lead on getting to the next step which is a coherent interface for PTK > Membership to use to specify how to set up its LoginManager (e.g. how > do I create a Membership instance using a Postgressql based UserSource > here, and another Membership instance using NT domain logins there). Actually, my short term goal is to make everything the PTK currently offers available as separate components (and as the PTK bundle), and to make things ZPatterns-aware. So, the Membership part that I'll be releasing will basically just set up a LoginManager with the high level interfaces... I'm not going to spend any time worrying about other UserSources and such at the moment. Those probably want be a big deal anyhow, given LM's pluggable architecture... > > So my vote is to check your patch into the main stream and harden > > it. > > That's three in favor and none opposed so far. I'll do it after > fighting a higher priority fire this afternoon. Yep. For some reason, I had been thinking your patch was in the CVS PTK, so I'm actually not even looking at your patched code, I guess :( Kevin ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
RE: [Zope-dev] LM and user objects
Chip Vanek writes: > Hi, > > I also tried to get the patch working with 2.2CVS PTK CVS and had little luck. > I also needed to manually apply the patch and worked through the errors until > I got a security violation with the PTK. I was no longer in any way able to > access any of my test portals using the management interface. I needed to > back the patch out and get to plain 2.21a and PTK cvs to even get a ZODB > portal working. Interesting. I've been avoiding 2.2 until the new security model gets some more bugs worked out. Unfortunately, this means I'm not surprised that you had problems... > With all the problems with the standard PTK way of handling users access, I > think that the best long term solution is to fully make the leap into the use > of LoginManager and Racks as the standard mechenism for the PTK. We seem to have consensus on this. Looks like Kevin's taken over the lead on getting to the next step which is a coherent interface for PTK Membership to use to specify how to set up its LoginManager (e.g. how do I create a Membership instance using a Postgressql based UserSource here, and another Membership instance using NT domain logins there). > I also think > that the standard authentication algorithm should support user login screens > before basic auth for those folders that have a login_form in the aquisition > path. That would certainly help. > So my vote is to check your patch into the main stream and harden > it. That's three in favor and none opposed so far. I'll do it after fighting a higher priority fire this afternoon. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
RE: [Zope-dev] LM and user objects
Hi, I also tried to get the patch working with 2.2CVS PTK CVS and had little luck. I also needed to manually apply the patch and worked through the errors until I got a security violation with the PTK. I was no longer in any way able to access any of my test portals using the management interface. I needed to back the patch out and get to plain 2.21a and PTK cvs to even get a ZODB portal working. With all the problems with the standard PTK way of handling users access, I think that the best long term solution is to fully make the leap into the use of LoginManager and Racks as the standard mechenism for the PTK. I also think that the standard authentication algorithm should support user login screens before basic auth for those folders that have a login_form in the aquisition path. So my vote is to check your patch into the main stream and harden it. Best, Chip Vanek [EMAIL PROTECTED] >-Original Message- >From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf >Of Dan L. Pierson >Sent: Wednesday, June 07, 2000 6:28 AM >To: Bill Anderson >Cc: [EMAIL PROTECTED] >Subject: Re: [Zope-dev] LM and user objects > > >Bill Anderson writes: > > "Phillip J. Eby" wrote: > > > > > > At 04:03 PM 6/6/00 -0600, Bill Anderson wrote: > > > > > > > >I am using the deafult UserSource that comes with LM for >the moment (one > > > >step at a time ;) > > > > > > LM or PTK? > > > > LM > > > > (Waiting for Dan's changes before trying _any_ LM with PTK ;) > >I posted the patch about two weeks ago, have you tried it? I just got >back from vacation yesterday afternoon. It looks like Steve Alexander >tried it and it worked OK (once he tracked down a bug in his manual >patch application that took me about a day to find when I created the >patch -- missing imports whose only references are wrapped in a >try/except can be hard to find :-(). > >I plan to check this in later today, either directly or on a branch. >Any preferences? > >___ >Zope-Dev maillist - [EMAIL PROTECTED] >http://lists.zope.org/mailman/listinfo/zope-dev >** No cross posts or HTML encoding! ** >(Related lists - > http://lists.zope.org/mailman/listinfo/zope-announce > http://lists.zope.org/mailman/listinfo/zope ) > > ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
Bill Anderson writes: > "Phillip J. Eby" wrote: > > > > At 04:03 PM 6/6/00 -0600, Bill Anderson wrote: > > > > > >I am using the deafult UserSource that comes with LM for the moment (one > > >step at a time ;) > > > > LM or PTK? > > LM > > (Waiting for Dan's changes before trying _any_ LM with PTK ;) I posted the patch about two weeks ago, have you tried it? I just got back from vacation yesterday afternoon. It looks like Steve Alexander tried it and it worked OK (once he tracked down a bug in his manual patch application that took me about a day to find when I created the patch -- missing imports whose only references are wrapped in a try/except can be hard to find :-(). I plan to check this in later today, either directly or on a branch. Any preferences? ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
On Tue, Jun 06, 2000 at 04:03:50PM -0600, Bill Anderson wrote: > > Cool. I tried the ZClass route (less restarts ;) gave it Fname,Lname,and > zpasswd as fields. (ISTR something about the password needing to be a > field) Running the risk of repeating myself: if the password is a ZClass property, any DTML method can read any user's password. It's ok if you don't plan to allow users to edit DTML (recommended), but anyway it's a hole I don't want to leave open in my site because I know I will forget it later. []s, |alo + -- Hack and Roll ( http://www.hackandroll.org ) News for, uh, whatever it is that we are. http://zope.gf.com.br/lalo mailto:[EMAIL PROTECTED] pgp key: http://zope.gf.com.br/lalo/pessoal/pgp Brazil of Darkness (RPG)--- http://zope.gf.com.br/BroDar ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
"Phillip J. Eby" wrote: > > At 04:03 PM 6/6/00 -0600, Bill Anderson wrote: > > > >I am using the deafult UserSource that comes with LM for the moment (one > >step at a time ;) > > LM or PTK? LM (Waiting for Dan's changes before trying _any_ LM with PTK ;) > > >When I try to add through the manage interface, I get: > >Error Type: KeyError > >Error Value: _v_rack > > Eh? What manage interface? Nothing Ty or I put out has a manage interface > to add a user. The management interface, a sin click through Lm to UserSouorce, select LM User object from the select-box. Sorry, in ahurry I left off 'ment' :/ > >So I judge that this interface to be a no-workie. > > I guess so. :) > > >So I tried the form->method method, and I get: > >Error Type: NotFound > >Error Value: None > > > >And no help in the traceback. :( > > The what method? I'm sorry, I'm completely lost. I made a form that took an input for id , and called the newItem(id) method. > If you're using the > PTK's PersistentUserSource, I don't know anything helpful to tell you, > 'cause I haven't had time to look at it yet (too busy on ZPatterns, not to > mention non-Zope work). Yeah, I hear you. I am finally getting the time to start doing some heavy work with LM and PTK later this month, so I am trying to get caught up, so to speak. figured since i knew more abot pTK than LM, that LM would be a good thing to start with. :) ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
At 04:03 PM 6/6/00 -0600, Bill Anderson wrote: > >I am using the deafult UserSource that comes with LM for the moment (one >step at a time ;) LM or PTK? >When I try to add through the manage interface, I get: >Error Type: KeyError >Error Value: _v_rack Eh? What manage interface? Nothing Ty or I put out has a manage interface to add a user. >So I judge that this interface to be a no-workie. I guess so. :) >So I tried the form->method method, and I get: >Error Type: NotFound >Error Value: None > >And no help in the traceback. :( The what method? I'm sorry, I'm completely lost. If you're using the PTK's PersistentUserSource, I don't know anything helpful to tell you, 'cause I haven't had time to look at it yet (too busy on ZPatterns, not to mention non-Zope work). ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
Kevin Dangoor wrote: > > - Original Message - > From: "Bill Anderson" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, June 06, 2000 4:21 PM > Subject: [Zope-dev] LM and user objects > > > Once I get that set up, I add property sheets for the user where? The > > ZClass? > > Once I get that set up, how do I add a user? Would one method be to go > > into the acl_users(LM) and add a User? What about adding them > > programmatically? I looled at the API.txt, but it wasn't helpful in this > > regard. :( > > If you're not in a blazing hurry on this, I'm working right now on breaking > Membership out of the PTK (after which, I'll put it back in :) > This will basically come in the form of a product that adds a LoginManager > and configures it with high level methods. No ETA at the moment, because I'm > wrestling with syntax within my method that is called by the factory. I > expect things to move fairly quickly, though, because Mike Pelletier and Dan > Pierson already did the hard work to get things to where they are now. Ooo I would like to get it up in the next day or so, I have a site waiting for it (http://gaming.activeboise.com) that pretty much needs membership to progress to the next level. So I will probably need to forge ahead, although I have places (and the will) for testing ;) wink-wink-nudge-nudge-ly y'rs Bill ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
"Phillip J. Eby" wrote: > > At 02:21 PM 6/6/00 -0600, Bill Anderson wrote: > > > >I beleive I have the basic LM concept grasped. I understand that I need > >a 'User' Object, ostensibly can be done in Python or ZClasses. For now, > >I will look at ZClasses for experimentation. > > > >So, I beleive that to set up a ZODB-based User for LM, I need to create > >the UserObject's ZClass. What do I need to subclass, if any, from? > > >From Python: Products.LoginManager.LoginUser > >From Zope: "ZClass_for_LoginUser" Cool. I tried the ZClass route (less restarts ;) gave it Fname,Lname,and zpasswd as fields. (ISTR something about the password needing to be a field) > >Once I get that set up, I add property sheets for the user where? The > >ZClass? > > To add sheets for the class, do it in the ZClass. You will then need > AttributeProvider support for the properties (which if you're doing a > Persistent user source, means simply that you leave the default "Persistent > Internal Attribute Provider" active for all attributes). Alternatively, > you can programmatically add a propertysheet to an individual user at > "runtime", but you will have to create the schema for it at the same time. OK. > >Once I get that set up, how do I add a user? Would one method be to go > >into the acl_users(LM) and add a User? What about adding them > >programmatically? I looled at the API.txt, but it wasn't helpful in this > >regard. :( > > I think if you derive your UserSource from the BasicUserSource or > UserSource class in LoginManager, you should be able to simply call the > usersource's newItem(id) method to get a new, empty user object. > Manipulating propertysheets on it will then let you set properties. I am using the deafult UserSource that comes with LM for the moment (one step at a time ;) When I try to add through the manage interface, I get: Error Type: KeyError Error Value: _v_rack So I judge that this interface to be a no-workie. So I tried the form->method method, and I get: Error Type: NotFound Error Value: None And no help in the traceback. :( What am I missing? ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
- Original Message - From: "Bill Anderson" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Tuesday, June 06, 2000 4:21 PM Subject: [Zope-dev] LM and user objects > Once I get that set up, I add property sheets for the user where? The > ZClass? > Once I get that set up, how do I add a user? Would one method be to go > into the acl_users(LM) and add a User? What about adding them > programmatically? I looled at the API.txt, but it wasn't helpful in this > regard. :( If you're not in a blazing hurry on this, I'm working right now on breaking Membership out of the PTK (after which, I'll put it back in :) This will basically come in the form of a product that adds a LoginManager and configures it with high level methods. No ETA at the moment, because I'm wrestling with syntax within my method that is called by the factory. I expect things to move fairly quickly, though, because Mike Pelletier and Dan Pierson already did the hard work to get things to where they are now. Kevin ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )
Re: [Zope-dev] LM and user objects
At 02:21 PM 6/6/00 -0600, Bill Anderson wrote: > >I beleive I have the basic LM concept grasped. I understand that I need >a 'User' Object, ostensibly can be done in Python or ZClasses. For now, >I will look at ZClasses for experimentation. > >So, I beleive that to set up a ZODB-based User for LM, I need to create >the UserObject's ZClass. What do I need to subclass, if any, from? >From Python: Products.LoginManager.LoginUser >From Zope: "ZClass_for_LoginUser" >Once I get that set up, I add property sheets for the user where? The >ZClass? To add sheets for the class, do it in the ZClass. You will then need AttributeProvider support for the properties (which if you're doing a Persistent user source, means simply that you leave the default "Persistent Internal Attribute Provider" active for all attributes). Alternatively, you can programmatically add a propertysheet to an individual user at "runtime", but you will have to create the schema for it at the same time. >Once I get that set up, how do I add a user? Would one method be to go >into the acl_users(LM) and add a User? What about adding them >programmatically? I looled at the API.txt, but it wasn't helpful in this >regard. :( I think if you derive your UserSource from the BasicUserSource or UserSource class in LoginManager, you should be able to simply call the usersource's newItem(id) method to get a new, empty user object. Manipulating propertysheets on it will then let you set properties. ___ Zope-Dev maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope-dev ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope )