Re: [Zope] standard_error_message confusion
Danny William Adair wrote: > > Unfortunately, yes he does. Time to step through your site in the debugger then. Or, instrument HTTPRequest.py and HTTPResponse.py to see what is getting called when. -- Steve Alexander Software Engineer Cat-Box limited http://www.cat-box.net ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
Unfortunately, yes he does.
Danny
-Ursprungliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Im Auftrag von
Steve Alexander
Gesendet: Freitag, 22. September 2000 16:51
An: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Betreff: Re: [Zope] standard_error_message confusion
Danny William Adair wrote:
>
> My standard error_message is ok.
>
> I think my problem with LoginManager and Membership can be cut down to
this:
>
> If I take away all permissions from a dtml-document for Anonymous, he will
> be correctly prompted for Login using *my* standard_error_message
> ("LoginRequired" is raised) as soon as he tries to access it. _But_, if I
> take away the rights for Anonymous from a _folder_ under which a dtml
> document acquires these security settings, he'll get the hard-coded Zope
> error_message with the login field, instead of my (customized one).
Whassup?
In the latter case, does Anonymous have rights to view your
standard_error_message?
--
Steve Alexander
Software Engineer
Cat-Box limited
http://www.cat-box.net
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
Danny William Adair wrote:
>
> My standard error_message is ok.
>
> I think my problem with LoginManager and Membership can be cut down to this:
>
> If I take away all permissions from a dtml-document for Anonymous, he will
> be correctly prompted for Login using *my* standard_error_message
> ("LoginRequired" is raised) as soon as he tries to access it. _But_, if I
> take away the rights for Anonymous from a _folder_ under which a dtml
> document acquires these security settings, he'll get the hard-coded Zope
> error_message with the login field, instead of my (customized one). Whassup?
In the latter case, does Anonymous have rights to view your
standard_error_message?
--
Steve Alexander
Software Engineer
Cat-Box limited
http://www.cat-box.net
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
My standard error_message is ok.
I think my problem with LoginManager and Membership can be cut down to this:
If I take away all permissions from a dtml-document for Anonymous, he will
be correctly prompted for Login using *my* standard_error_message
("LoginRequired" is raised) as soon as he tries to access it. _But_, if I
take away the rights for Anonymous from a _folder_ under which a dtml
document acquires these security settings, he'll get the hard-coded Zope
error_message with the login field, instead of my (customized one). Whassup?
TIA Danny
-Ursprungliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]Im Auftrag von
Steve Alexander
Gesendet: Dienstag, 19. September 2000 13:03
An: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Betreff: Re: [Zope] standard_error_message confusion
Danny William Adair wrote:
> Hi all!
>
> I'm using LoginManager to provide for a non-HTTP authentication. A role
> "Member" has access to a folder "Restricted", the
> role "Anonymous" doesn't have any rights at all in this folder. All
objects
> in this folder acquire these security settings.
> So far, so good.
>
> The login form from the LoginManager product raises "LoginRequired" and
> shows the login screen when necessary. Mysteriously, I don't get to see my
> (customized) standard_error_message, but *the* standard error message when
I
> try to access the folder unauthenticated. Now if I give Anonymous the
right
> to "View" in the "Restricted" folder (and therefore view all contained
> objects - which I naturally don't want to do) and explicitly take that
right
> away for index_html, any unauthenticated client trying to access the
folder
> (->index_html) will see *my* standard_error_message (containing the login
> screen).
>
> What is this all about?
Without looking closely at your system, it is hard to say. Perhaps your
standard_error_message is itself causing an error of some kind.
Therefore, you're getting the zope hard-coded error message.
Try commenting out most of your standard_error_message, so that there is
no possible way it could cause an error, then see if you see your
version or the Zope hardcoded version.
--
Steve Alexander
Software Engineer
Cat-Box limited
http://www.cat-box.net
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
___
Zope maillist - [EMAIL PROTECTED]
http://lists.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://lists.zope.org/mailman/listinfo/zope-announce
http://lists.zope.org/mailman/listinfo/zope-dev )
Re: [Zope] standard_error_message confusion
Danny William Adair wrote: > Hi all! > > I'm using LoginManager to provide for a non-HTTP authentication. A role > "Member" has access to a folder "Restricted", the > role "Anonymous" doesn't have any rights at all in this folder. All objects > in this folder acquire these security settings. > So far, so good. > > The login form from the LoginManager product raises "LoginRequired" and > shows the login screen when necessary. Mysteriously, I don't get to see my > (customized) standard_error_message, but *the* standard error message when I > try to access the folder unauthenticated. Now if I give Anonymous the right > to "View" in the "Restricted" folder (and therefore view all contained > objects - which I naturally don't want to do) and explicitly take that right > away for index_html, any unauthenticated client trying to access the folder > (->index_html) will see *my* standard_error_message (containing the login > screen). > > What is this all about? Without looking closely at your system, it is hard to say. Perhaps your standard_error_message is itself causing an error of some kind. Therefore, you're getting the zope hard-coded error message. Try commenting out most of your standard_error_message, so that there is no possible way it could cause an error, then see if you see your version or the Zope hardcoded version. -- Steve Alexander Software Engineer Cat-Box limited http://www.cat-box.net ___ Zope maillist - [EMAIL PROTECTED] http://lists.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce http://lists.zope.org/mailman/listinfo/zope-dev )
