On Mon, Jul 11, 2005 at 01:01:13PM -0500, Tim Suter wrote:
| Sorry Marco the reply to all button eluded me once again:
| 
| I deleted the access file and recreated it so I could get ready to
| delete all instances of the old LDAPUserFolder.  This has to been done
| prior to migration of Data.fs as the new Zope 2.8 isn't compatible with
| the old LDAPUserFolder.
| 
| Now, after commenting out the apache lines below:
| 
|   #<location /Zope>
|         #AuthName "Knowledge Access"
|         #AuthType Basic
|         #AuthLDAPURL ldap://X.X.org:389/o=X.org?uid?sub?
| (objectClass=person)
|         #require group cn=caitstaff,ou=Groups,o=X.org
|         #</location>
| 
| I can type in the URL for the knowledge base and it takes me straight to
| the index_html page without authentication unlike before.  However,
| after clicking the Manage Zope link, then you must enter in credentials,
| in order to access the ZMI of which the root folder contains the
| acl_users folder with the LDAPUserFolder configuration.

| Does this tell me that LDAPUserFolder is being handed the
| credentials via apache through some sort of redirect?

No, it means that the index_html object has the View permission
granted to Anonymous.  Therefore zope didn't need you to authenticate
because you already had enough privileges.  The other option is that
your browser remembered your credentials for that site and submitted
them without asking you.

-D

-- 
"...the word HACK is used as a verb to indicate a massive amount
of nerd-like effort."  -Harley Hahn, A Student's Guide to Unix
 
www: http://dman13.dyndns.org/~dman/            jabber: [EMAIL PROTECTED]

Attachment: signature.asc
Description: Digital signature

_______________________________________________
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )

Reply via email to