Re: [Zope] standard_error_message confusion
Danny William Adair wrote: > > Unfortunately, yes he does. Time to step through your site in the debugger then. Or, instrument HTTPRequest.py and HTTPResponse.py to see what is getting called when. -- Steve Alexander Software Engineer Cat-Box limited http://www.cat-box.net ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
Unfortunately, yes he does.
Danny
-Ursprungliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Im Auftrag von
Steve Alexander
Gesendet: Freitag, 22. September 2000 16:51
An: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Betreff: Re: [Zope] standard_error_message confusion
Danny William Adair wrote:
>
> My standard error_message is ok.
>
> I think my problem with LoginManager and Membership can be cut down to
this:
>
> If I take away all permissions from a dtml-document for Anonymous, he will
> be correctly prompted for Login using *my* standard_error_message
> ("LoginRequired" is raised) as soon as he tries to access it. _But_, if I
> take away the rights for Anonymous from a _folder_ under which a dtml
> document acquires these security settings, he'll get the hard-coded Zope
> error_message with the login field, instead of my (customized one).
Whassup?
In the latter case, does Anonymous have rights to view your
standard_error_message?
--
Steve Alexander
Software Engineer
Cat-Box limited
http://www.cat-box.net
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
Danny William Adair wrote:
>
> My standard error_message is ok.
>
> I think my problem with LoginManager and Membership can be cut down to this:
>
> If I take away all permissions from a dtml-document for Anonymous, he will
> be correctly prompted for Login using *my* standard_error_message
> ("LoginRequired" is raised) as soon as he tries to access it. _But_, if I
> take away the rights for Anonymous from a _folder_ under which a dtml
> document acquires these security settings, he'll get the hard-coded Zope
> error_message with the login field, instead of my (customized one). Whassup?
In the latter case, does Anonymous have rights to view your
standard_error_message?
--
Steve Alexander
Software Engineer
Cat-Box limited
http://www.cat-box.net
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
My standard error_message is ok.
I think my problem with LoginManager and Membership can be cut down to this:
If I take away all permissions from a dtml-document for Anonymous, he will
be correctly prompted for Login using *my* standard_error_message
("LoginRequired" is raised) as soon as he tries to access it. _But_, if I
take away the rights for Anonymous from a _folder_ under which a dtml
document acquires these security settings, he'll get the hard-coded Zope
error_message with the login field, instead of my (customized one). Whassup?
TIA Danny
-Ursprungliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Im Auftrag von
Steve Alexander
Gesendet: Dienstag, 19. September 2000 13:03
An: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Betreff: Re: [Zope] standard_error_message confusion
Danny William Adair wrote:
> Hi all!
>
> I'm using LoginManager to provide for a non-HTTP authentication. A role
> "Member" has access to a folder "Restricted", the
> role "Anonymous" doesn't have any rights at all in this folder. All
objects
> in this folder acquire these security settings.
> So far, so good.
>
> The login form from the LoginManager product raises "LoginRequired" and
> shows the login screen when necessary. Mysteriously, I don't get to see my
> (customized) standard_error_message, but *the* standard error message when
I
> try to access the folder unauthenticated. Now if I give Anonymous the
right
> to "View" in the "Restricted" folder (and therefore view all contained
> objects - which I naturally don't want to do) and explicitly take that
right
> away for index_html, any unauthenticated client trying to access the
folder
> (->index_html) will see *my* standard_error_message (containing the login
> screen).
>
> What is this all about?
Without looking closely at your system, it is hard to say. Perhaps your
standard_error_message is itself causing an error of some kind.
Therefore, you're getting the zope hard-coded error message.
Try commenting out most of your standard_error_message, so that there is
no possible way it could cause an error, then see if you see your
version or the Zope hardcoded version.
--
Steve Alexander
Software Engineer
Cat-Box limited
http://www.cat-box.net
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
Danny William Adair wrote: > Hi all! > > I'm using LoginManager to provide for a non-HTTP authentication. A role > "Member" has access to a folder "Restricted", the > role "Anonymous" doesn't have any rights at all in this folder. All objects > in this folder acquire these security settings. > So far, so good. > > The login form from the LoginManager product raises "LoginRequired" and > shows the login screen when necessary. Mysteriously, I don't get to see my > (customized) standard_error_message, but *the* standard error message when I > try to access the folder unauthenticated. Now if I give Anonymous the right > to "View" in the "Restricted" folder (and therefore view all contained > objects - which I naturally don't want to do) and explicitly take that right > away for index_html, any unauthenticated client trying to access the folder > (->index_html) will see *my* standard_error_message (containing the login > screen). > > What is this all about? Without looking closely at your system, it is hard to say. Perhaps your standard_error_message is itself causing an error of some kind. Therefore, you're getting the zope hard-coded error message. Try commenting out most of your standard_error_message, so that there is no possible way it could cause an error, then see if you see your version or the Zope hardcoded version. -- Steve Alexander Software Engineer Cat-Box limited http://www.cat-box.net ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
[Zope] standard_error_message confusion
Hi all! I'm using LoginManager to provide for a non-HTTP authentication. A role "Member" has access to a folder "Restricted", the role "Anonymous" doesn't have any rights at all in this folder. All objects in this folder acquire these security settings. So far, so good. The login form from the LoginManager product raises "LoginRequired" and shows the login screen when necessary. Mysteriously, I don't get to see my (customized) standard_error_message, but *the* standard error message when I try to access the folder unauthenticated. Now if I give Anonymous the right to "View" in the "Restricted" folder (and therefore view all contained objects - which I naturally don't want to do) and explicitly take that right away for index_html, any unauthenticated client trying to access the folder (->index_html) will see *my* standard_error_message (containing the login screen). What is this all about? I'm baffled. I want my standard_error_message *everywhere*, *any way*. tia and cia, (cheers in advance) Danny P.S.: I've customized LoginManager to get the users from a ZGadfly connection (at last!). Maybe there's something wrong here? Does Anonymous need rights to use the database or what? ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
