Re: [Zope-PAS] Authentication caching

2006-08-18 Thread Chris McDonough 
I know you didn't invent this pattern in this code, but I'm curious  
why the view_name here includes the login name.  Isn't lookup  
disambigutated by the keywords dict and you could use a static view  
name?


   view_name = createViewName('_extractUserIds',  
credentials.get('login'))

   keywords = createKeywords(**credentials)

On Aug 18, 2006, at 8:39 AM, Stefan H. Holek wrote:

http://svn.zope.org/PluggableAuthService/branches/shh- 
authentication-caching/


___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas

[Zope-PAS] Re: Plone Group assignment to LDAP group

2006-08-18 Thread Tres Seaver 
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Jens Vagelpohl wrote:
> 
> On 17 Aug 2006, at 10:36, Stephen Kenworthy wrote:
> 
>>> Hi all,
>>>
>>> I've been trying out the Plone 2.5, Zope 2.8.7 release for the first
>>> time and looking to migrate our intranet which is currently Plone 2.1.
>>>
>>> I love the new pas system but am still getting to grips with it. Can
>>> anyone offer any advice on the following...
>>>
>>> Can I assign LDAP *groups* to Zope *groups*? and if so, how?
> 
> Currently, no. The LDAPMultiPlugin does not perform any mapping. You get
> the same group names that are stored in LDAP. Mapping of names is only
> available for roles, and it is set up at the LDAPUserFolder level.

IT might be doable via a scriptable plugin, which used the properties of
the LDAP user to add additional groups.  (I don't recall at present how
those LDAP groups are exposed on the user).


Tres.
- --
===
Tres Seaver  +1 202-558-7113  [EMAIL PROTECTED]
Palladion Software   "Excellence by Design"http://palladion.com
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.2.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFE5c1t+gerLs4ltQ4RAnSrAKCyPH2teukDM2excHGG3VLwucrFwQCfa6WO
NGChD1iAMIcwUecxH1zE8HA=
=ztQY
-END PGP SIGNATURE-

___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas

RE: [Zope-PAS] Authentication caching

2006-08-18 Thread Ben Mason 
That's great news and I don't have any objections. Any more work on PAS
gets a big thumbs up in my eyes!

Ben

> -Original Message-
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
> Behalf Of Stefan H. Holek
> Sent: 18 August 2006 13:40
> To: zope-pas@zope.org
> Subject: [Zope-PAS] Authentication caching
> 
> Hi All,
> 
> I am in the lucky position of being sponsored to do some PAS work
> (Thanks WU-Wien!). You may see more coming from this direction soon.
;-
> )
> 
> As a first step I have implemented authentication caching in the
> "gateway" i.e. in _extractUserIds. If you want to have a look, you can
> find the code on the shh-authentication-caching branch.
> 
>  caching/>
> 
>  caching/PluggableAuthService.py?rev=69485&r1=69484&r2=69485>
> 
> Unless I receive complaints I am going to merge into trunk in a couple
> of days.
> 
> Cheers,
> Stefan
> 
> --
> Anything that, in happening, causes itself to happen again, happens
> again.  --Douglas Adams
> 
> 
> ___
> Zope-PAS mailing list
> Zope-PAS@zope.org
> http://mail.zope.org/mailman/listinfo/zope-pas
___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas

[Zope-PAS] Authentication caching

2006-08-18 Thread Stefan H. Holek 

Hi All,

I am in the lucky position of being sponsored to do some PAS work  
(Thanks WU-Wien!). You may see more coming from this direction soon. ;-)


As a first step I have implemented authentication caching in the  
"gateway" i.e. in _extractUserIds. If you want to have a look, you  
can find the code on the shh-authentication-caching branch.








Unless I receive complaints I am going to merge into trunk in a  
couple of days.


Cheers,
Stefan

--
Anything that, in happening, causes itself to happen again,
happens again.  --Douglas Adams


___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas

Re: [Zope-PAS] Plone Group assignment to LDAP group

2006-08-18 Thread Jens Vagelpohl 

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


On 17 Aug 2006, at 10:36, Stephen Kenworthy wrote:


Hi all,

I've been trying out the Plone 2.5, Zope 2.8.7 release for the  
first time and looking to migrate our intranet which is currently  
Plone 2.1.


I love the new pas system but am still getting to grips with it.  
Can anyone offer any advice on the following...


Can I assign LDAP *groups* to Zope *groups*? and if so, how?


Currently, no. The LDAPMultiPlugin does not perform any mapping. You  
get the same group names that are stored in LDAP. Mapping of names is  
only available for roles, and it is set up at the LDAPUserFolder level.


jens


-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (Darwin)

iD8DBQFE5aWrRAx5nvEhZLIRAsZlAJ9xQniaz7QzQ3rCorWGmC4cFWgZWQCdHAvb
5ryy8K0TtTwcr1cWsY2PjBQ=
=5CZX
-END PGP SIGNATURE-
___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas