I just did the same thing - fresh install using virtualenv and a copy from github. Same issue though.
Access to index_view - works okay: 2011-04-18 11:33:36,486 debug_authorization of url http://localhost:6543/ (view name u'' against context <cluegun.models .PasteBin object None at 0x1ccefb0>): ACLAllowed permission 'view' via ACE ('Allow', 'system.Everyone', 'view') in ACL [ ('Allow', 'system.Everyone', 'view'), ('Allow', 'system.Authenticated', 'manage')] on context <cluegun.models.PasteBin object None at 0x1ccefb0> for principals ['system.Everyone'] Access to manage - login screen is displayed: 2011-04-18 11:35:59,677 debug_authorization of url http://localhost:6543/manage (view name u'manage' against context <cluegun.models.PasteBin object None at 0x1ccefb0>): ACLDenied permission 'manage' via ACE '<default deny>' in ACL [('Allow', 'system.Everyone', 'view'), ('Allow', 'system.Authenticated', 'manage')] on context <cluegun.models.PasteBin object None at 0x1ccefb0> for principals ['system.Everyone'] 2011-04-18 11:35:59,677 debug_authorization of url http://localhost:6543/manage (view name u'manage' against context Forbidden("debug_authorization of url http://localhost:6543/manage (view name u'manage' against context <cluegun.models.PasteBin object None at 0x1ccefb0>): ACLDenied permission 'manage' via ACE '<default deny>' in ACL [('Allow', 'system.Everyone', 'view'), ('Allow', 'system.Authenticated', 'manage')] on context <cluegun.models.PasteBin object None at 0x1ccefb0> for principals ['system.Everyone']",)): Allowed (no permission registered) 2011-04-18 11:35:59,786 debug_authorization of url http://localhost:6543/static/style.css (view name u'' against context <pyramid.static.StaticURLInfo object at 0x017AC5F0>): ACLDenied permission '__no_permission_required__' via ACE '<default deny>' in ACL '<No ACL found on any object in resource lineage>' on context <pyramid.static.StaticURLInfo object at 0x017AC5F0> for principals ['system.Everyone'] After entering credentials (admin/admin): 2011-04-18 11:38:56,244 debug_authorization of url http://localhost:6543/login (view name u'login' against context <clue gun.models.PasteBin object None at 0x1ccefb0>): Allowed (no permission registered) 2011-04-18 11:38:56,306 debug_authorization of url http://localhost:6543/manage (view name u'manage' against context <cluegun.models.PasteBin object None at 0x1ccefb0>): ACLDenied permission 'manage' via ACE '<default deny>' in ACL [('Allow', 'system.Everyone', 'view'), ('Allow', 'system.Authenticated', 'manage')] on context <cluegun.models.PasteBin object None at 0x1ccefb0> for principals ['system.Everyone'] 2011-04-18 11:38:56,306 debug_authorization of url http://localhost:6543/manage (view name u'manage' against context Forbidden("debug_authorization of url http://localhost:6543/manage (view name u'manage' against context <cluegun.models.PasteBin object None at 0x1ccefb0>): ACLDenied permission 'manage' via ACE '<default deny>' in ACL [('Allow', 'system.Everyone', 'view'), ('Allow', 'system.Authenticated', 'manage')] on context <cluegun.models.PasteBin object None at 0x1ccefb0> for principals ['system.Everyone']",)): Allowed (no permission registered) 2011-04-18 11:38:56,369 debug_authorization of url http://localhost:6543/static/style.css (view name u'' against context <pyramid.static.StaticURLInfo object at 0x017AC5F0>): ACLDenied permission '__no_permission_required__' via ACE '<default deny>' in ACL '<No ACL found on any object in resource lineage>' on context <pyramid.static.StaticURLInfo object at 0x017AC5F0> for principals ['system.Everyone'] This takes me again to the login screen. This is weird, no? On Apr 18, 11:01 am, Michael Merickel <mich...@merickel.org> wrote: > FWIW I just cloned and ran cluegun for the first time using "paster serve > development.ini" in a new virtualenv and it ran fine for me. The /manage > view redirected to /login, then admin/admin user/pass took me back to > /manage where I was able to delete pastes. > > It does say "Failed login" on the login form if I try to use the wrong > credentials. > > Why does Pyramid conclude that the default is deny?!? > > > > In your example the principal is simply Everyone, which doesn't have the > 'manage' permission, thus the denial. > > Michael > > On Mon, Apr 18, 2011 at 3:34 AM, Sascha <sascha.b...@gmx.de> wrote: > > Here's the debug information: > > > debug_authorization of urlhttp://localhost:6544/manage(view name > > u'manage' against context <sdtrpt.models.Foo object None at > > 0x1c5adb0>): ACLDenied permission 'manage' via ACE '<default deny>' in > > ACL [('Allow', 'system.Everyone', 'view'), ('Allow', 'admin', > > 'manage')] on context <sdtrpt.models.Foo object None at 0x1c5adb0> for > > principals ['system.Everyone'] > > > The ACL of the Foo object is defined as: > > __acl__ = [ (Allow, Everyone, 'view'), (Allow, Authenticated, > > 'manage'), (Allow, 'admin', 'manage') ] > > > Why does Pyramid conclude that the default is deny?!? > > > On Apr 18, 8:40 am, Sascha <sascha.b...@gmx.de> wrote: > > > Hi there! > > > > I have modeled my app's security after the Cluegun example (https:// > > > github.com/Pylons/cluegun). When it did not work, I reviewed Cluegun > > > and realized that it does not work either. When I try to access the > > > manage view, I am getting the login screen. According to the password > > > file, it should be possible to log in with admin/admin. That seems to > > > work, I am not getting a message that this fails. However, I am again > > > presented with the login screen. It seems to me that there is a glitch > > > somewhere. Can anybody confirm this, please? > > > > Thanks, > > > Sascha > > > -- > > You received this message because you are subscribed to the Google Groups > > "pylons-discuss" group. > > To post to this group, send email to pylons-discuss@googlegroups.com. > > To unsubscribe from this group, send email to > > pylons-discuss+unsubscr...@googlegroups.com. > > For more options, visit this group at > >http://groups.google.com/group/pylons-discuss?hl=en. -- You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to pylons-discuss@googlegroups.com. To unsubscribe from this group, send email to pylons-discuss+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en.
