Re: [Zope] Authentication after proxy

2008-04-07 Thread Sascha Welter
(Mon, Apr 07, 2008 at 06:11:33AM +0200) Andreas Jung wrote/schrieb/egrapse: --On 6. April 2008 20:46:57 -0400 Maslak, Michael [EMAIL PROTECTED] wrote: I have put the Zope server behind a reverse proxy using ssl. I think I have some of the Apache certificate problems solved. Zope asks me

Re: [Zope] Authentication after proxy

2008-04-07 Thread Dieter Maurer
Maslak, Michael wrote at 2008-4-6 20:46 -0400: I have put the Zope server behind a reverse proxy using ssl. I think I have some of the Apache certificate problems solved. Zope asks me to authenticate once after accepting the ssl cert. Usually, Zope does not see the ssl cert at all -- only Apache.

Re: [Zope] Authentication after proxy

2008-04-06 Thread Andreas Jung
--On 6. April 2008 20:46:57 -0400 Maslak, Michael [EMAIL PROTECTED] wrote: I have put the Zope server behind a reverse proxy using ssl. I think I have some of the Apache certificate problems solved. Zope asks me to authenticate once after accepting the ssl cert. But then it asks me to

Re: [Zope] Authentication on a Folder?

2006-09-11 Thread Andreas Jung
--On 11. September 2006 01:05:01 -0700 Ferhat Ayaz [EMAIL PROTECTED] wrote: Hi, I want to restrict access to a subfolder: Folder structure: - Root Folder +- MySite +- Admin Access limitation: - My Site: Public for

Re: [Zope] Authentication on a Folder?

2006-09-11 Thread Ferhat Ayaz
argh, yes thanks. It's better then basic auth. (and easier) But know I'm standing against the problem: calling Scripts from an authentication Folder within the application server. + MySite : index_html |-+ Admin : getUser In index_html: p tal:content=container/Admin/getUser/ will an

Re: [Zope] Authentication Problem with migration from Zope 2.6.1 to Zope 2.9.4

2006-09-11 Thread Jens Vagelpohl
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Please keep this on the list. I am not some personal help desk, unless you pay me. Are you sure the DTML method is finding the correct obect to call findUsers on? ya, am sure n confirmed tht the object i mean LDAP directory server is found

Re: [Zope] Authentication on a Folder?

2006-09-11 Thread Chris Withers
Ferhat Ayaz wrote: In index_html: p tal:content=container/Admin/getUser/ will an authenticated user. But the page template MySite/index_html should have access to the Script Admin/getUser. I don't know how to do this.?? I think you're looking for Proxy Roles... Chris -- Simplistix -

Re: [Zope] Authentication on a Folder?

2006-09-11 Thread Ferhat Ayaz
hmm. But isn't it a hard work to set each script a specific permission instead of setting (I don't know how) the contained folder to the right permission? I want give to all Scripts full access, if these are called from another ZObject (page templates, etc.). but I don't want, that this script can

Re: [Zope] Authentication on a Folder?

2006-09-11 Thread Dieter Maurer
Ferhat Ayaz wrote at 2006-9-11 01:05 -0700: I want to restrict access to a subfolder: Folder structure: - Root Folder +- MySite +- Admin Access limitation: - My Site: Public for all Admin: Only with Basic Authentication

Re: [Zope] Authentication on a Folder?

2006-09-11 Thread Olavo Santos
From: Ferhat Ayaz [EMAIL PROTECTED] Sent: Monday, 11 de September de 2006 9:57 Hello. But know I'm standing against the problem: calling Scripts from an authentication Folder within the application server. + MySite : index_html -+ Admin : getUser In index_html: p

Re: [Zope] Authentication Problem with migration from Zope 2.6.1 to Zope 2.9.4

2006-09-08 Thread yogeen honnavar
hello andreas, thanks for the response. u said Import/Export is supported between Identical installations only, then can u pls tell me how to migrate an application from an older version of zope to a newer version ? reg LDAPUF versions...we hv LDAPUF vers 2.2beta on old server.

Re: [Zope] Authentication Problem with migration from Zope 2.6.1 to Zope 2.9.4

2006-09-08 Thread yogeen honnavar
hello andreas, am hereby giving the trace from log file. other than LDAPUF we r not using any other 3rd party products. what i want is just to get basic authentication popup dialog to come. if it comes then the problem will be solved i guess. is there a way to configure the

Re: [Zope] Authentication Problem with migration from Zope 2.6.1 to Zope 2.9.4

2006-09-08 Thread Dieter Maurer
yogeen honnavar wrote at 2006-9-8 03:10 -0700: ... trace : 2006-09-08T14:38:52 ERROR Zope.SiteErrorLog http://systemIP:8080/isac/PGA/index_html Traceback (innermost last): ... Module OFS.DTMLMethod, line 137, in __call__ - DTMLMethod at /isac/PGA/cl/areYouCLpaRecoSanc - URL:

Re: [Zope] Authentication Problem with migration from Zope 2.6.1 to Zope 2.9.4

2006-09-08 Thread Jens Vagelpohl
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 8 Sep 2006, at 21:53, Dieter Maurer wrote: yogeen honnavar wrote at 2006-9-8 03:10 -0700: Module string, line 1, in expression AttributeError: findUser What you see is *not* an authentication problem but a DTML method (DTMLMethod at

Re: [Zope] Authentication Problem with migration from Zope 2.6.1 to Zope 2.9.4

2006-09-07 Thread Andreas Jung
--On 7. September 2006 22:37:43 -0700 yogeen honnavar [EMAIL PROTECTED] wrote: Dear users, we have a zope application on an older system running Redhat 7.2 and Zope 2.6.1 with python 2.1. Now we wish to migrate the application to latest stable relase of zope 2.9.4 with python

Re: [Zope] Authentication problems on FreeBSD with Apache

2001-01-11 Thread Bill Welch
First off, bypass apache and go straight to zope - typically port 8080. Did you make note of the superuser name and password the installation script produced? If not, use zpasswd.py to create a new one. I'm presuming that you're using 2.2.x. Don't forget to create a manager user and switch to it

Re: [Zope] Authentication problems on FreeBSD with Apache

2001-01-11 Thread Jason C. Leach
hi, Did you create an Administrators account in zope and set the passwd for it? j. .. . Jason C. Leach ... University College of the Cariboo. .. On Thu, 11 Jan 2001, Drew Sanford wrote: I have recently installed Zope on FreeBSD running the Apache web server. When

Re: [Zope] Authentication Problem : External method returning object

2000-12-08 Thread Sean McGrath
Here is the external method "testexternal": class AClass: [Dieter Maurer] You will need (or something like this): __access_to_unprotected_subobjects__= 1 def __init__(self): It works a treat. Thanks! Sean

Re: [Zope] Authentication Problem : External method returning object :Zope 2.2.4Zope 2.2.4

2000-12-07 Thread Dieter Maurer
Hi Sean Sean McGrath writes: ... I have an external method that returns an object. I have a dtml method that tries to reference an attribute of that object. The attempted attribute reference causes the HTTP authenticate dialog to appear. No username/password seems to appease it. Have

Re: [Zope] Authentication Problem : External method returning object : Zope 2.2.4

2000-12-07 Thread Tres Seaver
Sean McGrath [EMAIL PROTECTED] wrote: All, I'm just a country boy raised on mashed potatoes and Zope 2.1.6. The new security model up here in the bright lights/big city world of Zope 2.2.4 has me all confused:-) I have an external method that returns an object. I have a dtml method

Re: [Zope] authentication II

2000-11-30 Thread Hannu Krosing
Olaf Zanger wrote: hi everybody, after a long 10h struggle with installing and running zope i found some interesting things. may anybody be able to explain these to me? i run a suse7.0 system with a suse zope installation on 8080. i changed the access file to a new account name.

Re: [Zope] authentication

2000-11-29 Thread Chris McDonough
Hi Olaf, Have you read the "security" section of the "Zope Book" draft? It's linked from the front page of Zope.org. - Original Message - From: "Olaf Zanger" [EMAIL PROTECTED] To: "Zope Mailinglist" [EMAIL PROTECTED] Sent: Wednesday, November 29, 2000 1:45 AM Subject: [Zope]

Re: [Zope] authentication

2000-11-29 Thread Chris McDonough
Zanger" [EMAIL PROTECTED] To: "Chris McDonough" [EMAIL PROTECTED] Sent: Wednesday, November 29, 2000 7:04 AM Subject: Re: [Zope] authentication hi chris, Have you read the "security" section of the "Zope Book" draft? It's linked from the front page of Zope.

Re: [Zope] Authentication problem when accessing ZSQL method

2000-09-25 Thread Dieter Maurer
steve smith writes: I am experiencing great frustration when trying to implement a drop-down list based upon one of the how-tos I found on the Zope site. Whenever I try to 'view' the DTML method which references the ZSQL method, I am prompted to authenticate by my browser. I can't see

Re: [Zope] Authentication problem when accessing ZSQL method

2000-09-25 Thread C├ęsar A. K. Grossmann
Dieter Maurer wrote: authenticate by my browser. I can't see anything in the security attributes for the SQL method which requires authentication, and I can 'test' the ZSQL method succesfully without requiring authentication. You must grant the "use database methods" to "Annonymous".

Re: [Zope] Re: Every user should have the Anonymous role everywhere(was :Re: [Zope] Authentication, Anonymous and Public)

2000-07-05 Thread Stuart Bishop
On Sun, 2 Jul 2000, Dieter Maurer wrote: Chris Withers writes: Dieter Maurer wrote: In Zope, each user has a set of roles. Any user has the "Anonymous" role. Log-in users may have additional roles. I'm not convinced this is true... The Content Manager Guide (Security,

Re: [Zope] Re: Every user should have the Anonymous role everywhere(was :Re: [Zope] Authentication, Anonymous and Public)

2000-07-05 Thread Chris Withers
Stuart Bishop wrote: or in BasicUserFolder. Either way it should go in the collector. Issue 1391, or in a slightly different phrasing, Issue 467 cheers, Chris ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope **

RE: [Zope] Authentication, Anonymous and Public

2000-07-05 Thread Brian Lloyd
A user that does not log in, i.e. a user you know nothing of, gets the "Anonymous" role automatically (at least with "acl_users"). A logged in user may not get the "Anonymous" role. This does not provide additional security, because this user may simply shut down his browser and

Re: [Zope] Authentication, Anonymous and Public

2000-07-05 Thread Chris Withers
Brian Lloyd wrote: Can you give me a scenario that shows the problem so that I can reproduce it? (walk me through what objects to create, what permissions to give, how to try to access them). This should be done with standard built-in User/UserFolders if possible.

RE: [Zope] Authentication, Anonymous and Public

2000-07-05 Thread Capesius, Alan
Title: RE: [Zope] Authentication, Anonymous and Public Brian, here are the steps to recreate: Caveat: Anonymous is unrestricted at the root level 1) Create a folder 2) Remove inherited (acquired) rights for all attributes 3) Add a user to the folder 4) Give the user the manager role 5

Re: [Zope] Authentication, Anonymous and Public

2000-07-04 Thread Stuart Bishop
On Fri, 30 Jun 2000, Dieter Maurer wrote: Capesius, Alan writes: I'm running into a problem after implementing jcNTUserFolder in a subfolder of my site. Users can access the root level or particular subfolders anonymously. Once a user accesses the protected NTUserFolder, the

Re: [Zope] Authentication, Anonymous and Public

2000-07-04 Thread Dieter Maurer
Stuart Bishop writes: On Fri, 30 Jun 2000, Dieter Maurer wrote: In Zope, each user has a set of roles. Any user has the "Anonymous" role. Log-in users may have additional roles. Thus, what you see, should not happen. Users, by default, are not granted the 'Anonymous' role.

Re: [Zope] Authentication, Anonymous and Public

2000-07-04 Thread Chris Withers
Dieter Maurer wrote: A user that does not log in, i.e. a user you know nothing of, gets the "Anonymous" role automatically (at least with "acl_users"). A logged in user may not get the "Anonymous" role. This does not provide additional security, because this user may simply shut down his

Re: [Zope] Re: Every user should have the Anonymous role everywhere (was :Re: [Zope] Authentication, Anonymous and Public)

2000-07-03 Thread Chris Withers
Dieter Maurer wrote: In Zope, each user has a set of roles. Any user has the "Anonymous" role. Log-in users may have additional roles. I'm not convinced this is true... The Content Manager Guide (Security, Authorization) states it this way: The "Anonymous" role, which

[Zope] Re: Every user should have the Anonymous role everywhere (was :Re: [Zope] Authentication, Anonymous and Public)

2000-07-02 Thread Dieter Maurer
Chris Withers writes: Dieter Maurer wrote: In Zope, each user has a set of roles. Any user has the "Anonymous" role. Log-in users may have additional roles. I'm not convinced this is true... The Content Manager Guide (Security, Authorization) states it this way: The "Anonymous"

[Zope] Every user should have the Anonymous role everywhere (was :Re: [Zope]Authentication, Anonymous and Public)Authentication, Anonymous and Public)

2000-07-01 Thread Chris Withers
Dieter Maurer wrote: In Zope, each user has a set of roles. Any user has the "Anonymous" role. Log-in users may have additional roles. I'm not convinced this is true... Quoting from the LoginManager CHANGES.TXT file: Generic User Source, like the GenericUserFolder product it was inspired

RE: [Zope] Authentication, Anonymous and Public

2000-06-30 Thread Alan Capesius, MCSE
: Dieter Maurer[SMTP:[EMAIL PROTECTED]] Sent: Friday, June 30, 2000 4:40:26 PM To: Capesius, Alan Cc: [EMAIL PROTECTED] Subject:Re: [Zope] Authentication, Anonymous and Public Auto forwarded by a Rule Capesius, Alan writes: I'm running into a problem after

Re: [Zope] Authentication question.

2000-06-28 Thread Richard Moon
I don't know if my experience is any use. I'm developing a site with a postgresql backend and I want users to be able to enter data over the web, and I want to know who has entered what data. So only registered users can access the pages which allow data entry. I set up a GUF (Generic User

Re: [Zope] Authentication question.

2000-06-23 Thread Stuart Bishop
On Fri, 23 Jun 2000, Gregory Haley wrote: we are building an application that needs more information for users than that which is made available via the acl_users db (which can only contain username, password, domains, and roles). specifically, we have created an RDBS database which tracks