On Tue, 2008-07-08 at 22:52 -0700, Shailesh Kumar wrote:
> Did you try the resourceDirecotry ZCML directive?
> that way they don't need the authentication overhead.
Thanks for the replies, everyone. This is what I currently have as an
example of a resource I'm fetching:
But if I try to access one of these resources directly from the web,
I still get my authentication code being called. I've tracked it down
def _maybePlacefullyAuthenticate(self, request, ob):
if not IUnauthenticatedPrincipal.providedBy(request.principal):
# We've already got an authenticated user. There's nothing
# Note that beforeTraversal guarentees that user is not
if not ISite.providedBy(ob):
# We won't find an authentication utility here, so give up.
sm = removeSecurityProxy(ob).getSiteManager()
auth = sm.queryUtility(IAuthentication)
if auth is None:
# No auth utility here
# Try to authenticate against the auth utility
principal = auth.authenticate(request) <!----- My PAU called
Any ideas ?
Zope3-users mailing list