[Zope3-Users] fighting with Pluggable Authentication Utility
Now I have a problem with the Pluggable Authentication Utility.
(win32/Zope3/trunk/30009)
I have a folder(hu03), which a made a Site.
In the default Site-Management Folder I created a Pluggable
Authentication Utility (pauloc).
Which has a SessionCredentialsPlugin (s2), a PrincipalFolder
(usrloc) and a HTTP Basic-Auth Plugin (http2).
There is one user in the PrincipalFolder (jani).
For Credentials Plugins http2 and s2 is selected.
For Authenticator Plugins usrloc is selected.
Every plugin is active.
Just for fun with
(http://localhost:8080/hu03/++etc++site/default/pauloc/usrloc/@@grant.html)
I granted _every_ role and permission to jani, including Site Manager,
Site Member, ...
Now jani is able to login, but objects requiring zope.ManageContent
permission just return "Unathorized".
There is a method,
zope.app.securitypolicy.zopepolicy.settingsForObject which I tried to
use to check permissions with. But it returns:
hu03
{'principalPermissions': [], 'rolePermissions': [], 'principalRoles': []}
{'principalPermissions': [], 'rolePermissions': [], 'principalRoles': []}
global settings
{'principalPermissions': [], 'rolePermissions': [{'setting': PermissionSetting:
Allow, 'role': 'bugtracker.User', 'permission': 'bugtracker.AddBug'},
{'setting': PermissionSetting: Allow, 'role': 'zope.Manager', 'permission':
'bugtracker.AddBug'}, {'setting': PermissionSetting: Allow, 'role':
'zope.Manager', 'permission':
...
I guess that means that jani does not have the roles/permissions.
Please help
--
Best regards,
Adam mailto:[EMAIL PROTECTED]
___
Zope3-users mailing list
Zope3-users@zope.org
http://mail.zope.org/mailman/listinfo/zope3-users
RE: [Zope3-Users] fighting with Pluggable Authentication Utility
Hi Adam
From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Adam Groszer
> Sent: Friday, April 15, 2005 8:49 PM
> To: zope3-users
> Subject: [Zope3-Users] fighting with Pluggable Authentication Utility
>
> Now I have a problem with the Pluggable Authentication Utility.
> (win32/Zope3/trunk/30009)
>
> I have a folder(hu03), which a made a Site.
> In the default Site-Management Folder I created a Pluggable
> Authentication Utility (pauloc).
> Which has a SessionCredentialsPlugin (s2), a PrincipalFolder
> (usrloc) and a HTTP Basic-Auth Plugin (http2).
> There is one user in the PrincipalFolder (jani).
> For Credentials Plugins http2 and s2 is selected.
> For Authenticator Plugins usrloc is selected.
> Every plugin is active.
>
> Just for fun with
> (http://localhost:8080/hu03/++etc++site/default/pauloc/usrloc/
> @@grant.html)
> I granted _every_ role and permission to jani, including Site Manager,
> Site Member, ...
No, no, go back to the content area like http://localhost:8080/hu03
and grant there the roles or permission.
Grant on objects or folders in the data structure. Or do you
really like to give "jani" access to the PrincipalFolder?
Regards
Roger Ineichen
> Now jani is able to login, but objects requiring zope.ManageContent
> permission just return "Unathorized".
>
> There is a method,
> zope.app.securitypolicy.zopepolicy.settingsForObject which I tried to
> use to check permissions with. But it returns:
>
> hu03
> {'principalPermissions': [], 'rolePermissions': [],
> 'principalRoles': []}
> {'principalPermissions': [], 'rolePermissions': [],
> 'principalRoles': []}
> global settings
> {'principalPermissions': [], 'rolePermissions': [{'setting':
> PermissionSetting:
> Allow, 'role': 'bugtracker.User', 'permission': 'bugtracker.AddBug'},
> {'setting': PermissionSetting: Allow, 'role': 'zope.Manager',
> 'permission':
> 'bugtracker.AddBug'}, {'setting': PermissionSetting: Allow, 'role':
> 'zope.Manager', 'permission':
> ...
>
> I guess that means that jani does not have the roles/permissions.
> Please help
>
> --
> Best regards,
> Adam mailto:[EMAIL PROTECTED]
>
>
> ___
> Zope3-users mailing list
> Zope3-users@zope.org
> http://mail.zope.org/mailman/listinfo/zope3-users
>
___
Zope3-users mailing list
Zope3-users@zope.org
http://mail.zope.org/mailman/listinfo/zope3-users
RE: [Zope3-Users] fighting with Pluggable Authentication Utility
Hi Adam From: Adam Groszer [mailto:[EMAIL PROTECTED] > Sent: Sunday, April 17, 2005 10:13 AM > To: Roger Ineichen > Subject: RE: [Zope3-Users] fighting with Pluggable > Authentication Utility > > Hello Roger, > > Saturday, April 16, 2005, 6:00:03 PM, you wrote: > > >No, no, go back to the content area like http://localhost:8080/hu03 > >and grant there the roles or permission. > > Yippie, it's working fine! cool > But I'm sorry I don't find your samples in > zope.app.form.browser.objectwidget.txt, although I'm at revision > 30016. Hm, take a second look at the package src\zope\app\form\browser there is a file called objectwidget.txt. If not, I'm totaly lost, because in my workspace it's marked as commited since revision 29226 (trunk). Regards Roger Ineichen ___ Zope3-users mailing list Zope3-users@zope.org http://mail.zope.org/mailman/listinfo/zope3-users
