rectory environment in a site. That gave me two groups
called 'Administrators': the standard Zope one and the one that comes
in via active directory.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/
efixes (that is what they are for).
I see no mention of prefixes anywhere within PAS, so I guess you expect
each plugin to implement prefixes itself? How about multiple instances
of the same plugin?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
ht
Can someone tell me what/where IPropertiedUser is?
PluggableAuthService.interfaces.plugins mentions it several times but I
can not find it anywhere.
WIchert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make
Previously Wichert Akkerman wrote:
> Can someone tell me what/where IPropertiedUser is?
> PluggableAuthService.interfaces.plugins mentions it several times but I
> can not find it anywhere.
I overlooked the PropertiedUser class; I am asusming that that will that
get an IPropertiedUse
lid, which is not true.
I'm not sure what the best way to fix this is. Either we should rollback
user creation if it fails halfway (tricky) or add some new exception
types so we can distinguish between fatal errors and non-fatal ones.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]&g
Since the last PlonePAS release 2 months ago there have been a number of
bugfixes and no new features. Are there any objections to doing a 0.4.3
release based on those?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/
Previously Tim Olsen wrote:
> Does PlonePAS 0.5 work with PAS 1.1b2?
It works with PAS trunk, so it should work with 1.1b2 as well.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make thin
I notice that PAS is missing an interface which specifies how to add
a role. Is that a conscious decision?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things
enumerate it.
Can someone enlighten me as to how roles and local roles really differ,
and why every folder has both?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/
in always has all user information it might require. Could we extend
IUserAdderPlugin or add a new interface to support this kind of usage?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
d either indeed take
that role and implement an interface for it, or not and always use
__ac_roles__ from the closest containing RoleManager instead of using
its internal data structure.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is si
which is in svn; would it be possible to get a release which
includes that?
PluginRegistry version 1.0.2 seems to be tagged in subversion, but
the latest downloaded release is still 1.0. Would it be possible to get
1.0.2 up on www.zope.org so we can use that as well?
Wichert.
--
Wichert Akkerman
er you cut a release seems
a good estimate.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
Zope-PAS@zope.
can
drop me an email when you have made the release to Alec Mitchell
<[EMAIL PROTECTED]> so he can make the Plone 2.5-alpha2 release
I'ld appreciate it.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/
#x27;ll make sure to go over those in the next couple of weeks.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
henticated group
What would be useful is if you can determine from a role manager which
authentication plugin was used.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
/collective/browser/PlonePAS/trunk/plugins/property.py
it would certainly be a good step in making PlonePAS slowly disappear :)
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things
uncomfortable with this magic.
setProperty on GRUFUser will persist the change as well.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
operty sheets.
That makes your code very verbose though. For all changes you have to
figure out which plugin the property belongs to, figure out which user
folder should be used, get the plugin from that userfolder and call a
method on that.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>
ldn't 0 be returned in both
places?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
Zope-PAS@zope.org
http://
Previously Wichert Akkerman wrote:
> then handling of 0 versus None seems confused: when checking for roles
> None is returned if the object is outside the acquisition context, but
> when checking local roles 0 is returned. Shouldn't 0 be returned in both
> places?
I should have
I'd think almost everything will, with the exception of
> that contentious magic persistence.
Sounds like an excellent plan. Who should I contact to get commit access
to work on that branch?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wig
entials plugins are used.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas
for PAS on which I'll work to
merge at least some of the features from PlonePAS into PAS. The GRUF
backwards compability will disappear, proably in Plone 3.5.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/
priority than the CookieAuthHelper plugin. Are there any
objections to doing that?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS m
1
> >
> >
> >On 27 May 2006, at 20:37, Wichert Akkerman wrote:
> >
> >>I was investigating a plone bug (http://dev.plone.org/plone/ticket/
> >>5355)
> >>and it is caused by PAS behaviour. The problems boils down to
> >>logic in
> >
>
> On 27 May 2006, at 22:40, Wichert Akkerman wrote:
>
> >Ok, I'll change PAS to behave like CookieCrumbler on trunk.
> >
> >Wichert.
> >
> >
> >Previously Chris McDonough wrote:
> >>I imagine it's an accident of implementation.
&g
t; _______
> Zope-PAS mailing list
> Zope-PAS@zope.org
> http://mail.zope.org/mailman/listinfo/zope-pas
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things s
effectively removes it.
Is there any reason to do that filtering? Since the meta_types are
registered at runtime we already know that the package is present.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard t
igure.zcml that was never called, hence the problem.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/mailman/listinfo/zope-pas
doing that there as well?
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
Zope-PAS@zope.org
http://mail.zope.org/m
matic: there are a lot of valid
configurations where you can have a user who can not be found by a
search. The OpenID implementation has to jump through various hoops
to fake search results in order to be usable for example.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple
ives in the meantime.
>
> The better list for this would be [EMAIL PROTECTED] (CC'ed), which
> deals with PAS specifics.
How do zope-pas@zope.org and [EMAIL PROTECTED] related to
each-other? I've always wondered that.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It
> everything you need is done :)
If he needs to use a session using something else than the username &
password as used by the cookie plugin it should be trivial to leverage
plone.session here. Just add a plone.session plugin to your acl_users,
enable its interfaces, disable credentia
Previously Jens Vagelpohl wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
>
> On 4 Apr 2007, at 11:52, Wichert Akkerman wrote:
> >If he needs to use a session using something else than the username &
> >password as used by the cookie plugin i
o have all users in a plone "user_source".
> the authentication itself should be against a bunch of
> ActiveDirectory-domains.
> after the authemtication I just want the user to be authorized without
> the need to re authenticate during business hours.
Why do you want to ha
Previously robert rottermann wrote:
> with this approach we would loose the ability to
> - - easily search for users
> - - easily add users to ad hoc local groups.
If you enable user enumeration on the LDAP plugin that should work fine.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTE
ynamic roles be applied for
> catalog
> queries. In other words, if I have object A and object B in the same folder,
> and user1 can access object A but not B based on the external condition,
> user1
> should see A but not B in a folder listing, search, navigation, etc. Is
so far. 'It's
> lame because I said it is' doesn't cut it for me.
It's an unneeded change to a critical object. If you can get away with
not doing that you remove a possible risk of breakage.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make
Previously Sidnei da Silva wrote:
> On 4/19/07, Wichert Akkerman <[EMAIL PROTECTED]> wrote:
> >The emergency user handling in PAS is very robust; I do not see how even
> >a completely broken user folder at a higher level can break that.
>
> If the higher le
Previously Sidnei da Silva wrote:
> On 4/19/07, Wichert Akkerman <[EMAIL PROTECTED]> wrote:
> >Previously Sidnei da Silva wrote:
> >Lets rephrase this: is the problem you see that the site user folder
> >(which will be a PAS) issues a challenge, which results in credent
Previously Kapil Thangavelu wrote:
> On Thu, 19 Apr 2007 08:16:25 -0400, Sidnei da Silva
> <[EMAIL PROTECTED]> wrote:
>
> >On 4/19/07, Wichert Akkerman <[EMAIL PROTECTED]> wrote:
> >>Previously Sidnei da Silva wrote:
> >>Lets rephrase this: is
uld like to change this so all IUserAdder plugins get a chance to
> fire - does anyone have an opinion on it?
-1, we can not change semantics of existing interfaces.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/
;m going to put more effort in this I would like to know if
there is an interest in adding events and if my current approach is
sane. In other words: feedback please!
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It i
Previously Jens Vagelpohl wrote:
> On 9 Jun 2007, at 20:28, Wichert Akkerman wrote:
> >I'm not quite happy with the current interfaces; I think it makes more
> >sense to carry an IBasicUser instance in the event instead of the
> >current userid and acl_users attri
Are there plans for a PAS 1.5 release? 1.4 is over 10 months old now and
I would like to be able to include something newer in Plone 3.
If merging my z3-events branch is a factor in this I don't mind
postponing merging that until 1.5 is out.
Wichert.
--
Wichert Akkerman <[EMAIL P
>personally wouldn't mind if the event changes get merged before the
> >>release.
> >>
> >>Any other opinions out there?
> >
> >+1 for a near-term 1.5 release, including the event-based changes.
>
> OK, I'll target this coming Sunday (6/17)
Previously Jens Vagelpohl wrote:
> On 11 Jun 2007, at 16:20, Wichert Akkerman wrote:
> >>OK, I'll target this coming Sunday (6/17) for a PAS release. Wichert,
> >>that's enough time for you to do your merging I assume?
> >
> >I'll merge it today.
&
Previously Wichert Akkerman wrote:
> Previously Jens Vagelpohl wrote:
> > On 11 Jun 2007, at 16:20, Wichert Akkerman wrote:
> > >>OK, I'll target this coming Sunday (6/17) for a PAS release. Wichert,
> > >>that's enough time for you to do your mergi
forgot to mention that one of my goals is to have this behavior be PAS
> pluggable. In particular, it seems obvious that user.getUserName()
> should be the default that's used, but I have a need to use something
> else, so I'd like to be able to write a plugin that does this.
I
Previously Ross Patterson wrote:
> Wichert Akkerman <[EMAIL PROTECTED]>
> writes:
>
> > Previously Ross Patterson wrote:
> >> Ross Patterson <[EMAIL PROTECTED]> writes:
> >>
> >> > It seems like ZServer/medusa/http_server.py is responsible
The result is
> a version conflict. This could also easily be fixed with a working
> set that dictates which versions would be used from the beginning.
This is a real problem and something that has to be fixed. It will bite
us with the separate repositories Tres mentioned as well. You
>
> would be usable as an 'index-url' for setuptools: when used this way,
> setuptools would only find / install eggs from the "gardened" set,
> rather than whatever anyone happened to have uploaded that day.
>
> If PyPI c
plone.org) has a workaround for that.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
___
Zope-PAS mailing list
Zope-PAS@zope.org
http:
I noticed that Tres eggified PluggableAuthService. Unfortunately the old
location still exists and changes where made there.
Is there any reason not to merge those into
products.PluggableAuthService and remove trunk and the 1.5 branch at the
old location?
Wichert.
--
Wichert Akkerman <[EM
Previously Tres Seaver wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Wichert Akkerman wrote:
> > I noticed that Tres eggified PluggableAuthService. Unfortunately the old
> > location still exists and changes where made there.
> >
> > Is ther
Can we please get an old-style product release for PAS 1.5.2.1? I love
eggs, but Plone 3.0 still uses the old-style version of it and I don't
want to change that in a maintenance release.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://ww
t. For Plone 3.0
we still need the product version. I have put a corrected .tar.gz on
http://dist.plone.org/PluggableAuthService-1.5.3.tar.gz .
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is h
Tres Seaver wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wichert Akkerman wrote:
Previously Tres Seaver wrote:
I've just pushed PAS 1.5.3 to www.zope.org and the cheeseshop. Would
the folks who depend on automated downloads from either of those sites
please check that I didn
Previously Jens Vagelpohl wrote:
> On Feb 15, 2008, at 13:59 , Wichert Akkerman wrote:
> >All the tools to create that tarball and the current installres
> >assume that we either have an egg or a plain product release.
>
> But apparently there *is* an egg, right? Or
t; tool-poverty. Some modern Linux 'desktop' distributions do not ship
> with a compiler installed by default either, though it's relatively
> easy installing a compiler there than on Windows, I wouldn't say
> that's such a big deal.
Iirc OSX ships without a usa
Previously Jens Vagelpohl wrote:
>
> On Feb 15, 2008, at 18:33 , Wichert Akkerman wrote:
>
> >Previously Sidnei da Silva wrote:
> >>I wouldn't call the lack of shipping with a compiler installed
> >>tool-poverty. Some modern Linux 'desktop' distrib
ccount its interfaces are not very well defined. I think PlonePAS
has proven that it is both desirable and possible.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
__
oing a
exact user search for a userid that looks like a URL and if so always
return a dummy user. That made PAS happy.
Wichert.
--
Wichert Akkerman <[EMAIL PROTECTED]>It is simple to make things.
http://www.wiggy.net/ It is hard to make things simple.
_
On 8/3/09 13:45 , Andreas Zeidler wrote:
> stefan of course already told me about you being somewhat reluctant
> regarding the patch, but since he's refactored it again in the meantime
> — resulting in a much smaller patch set[*] — i'd really like you to
> review it again and perhaps reconsider. af
that cookie.
this might even just be another instance of plone.session.
- optionally a role plugin to add a special role when masquerading is
active
This should be doable without any changes in PAS itself.
Wichert.
--
Wichert AkkermanIt is simple to make things.
http://www.wiggy.net
On 8/12/09 22:12 , Wichert Akkerman wrote:
> Hi Stefan,
>
> On 2009-8-11 17:59, Stefan H. Holek wrote:
>> Short version:
>> PAS cannot be entirely ignorant of masquerading, because plugins are
>> allowed to call back to "their" PAS (via _getPAS()) a
+creds['password'] = password.decode('hex')
> +except TypeError:
> +# Cookie is in a different format, so it is not ours
> + return creds
That looks incorrect: if the password.decode fails you are now returnin
t; could rename the flag to: _dont_swallow_my_exceptions_in_debug_mode.
That would certainly be more intuitive.
> However, in order to spare PAS newbies time and frustration, this should
> be the default in debug mode. I don't know how many PAS plugins rely on
> this swallowing of exceptions.
Several in my experienc
On Dec 27, 2012, at 20:52 , Tres Seaver wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> (PAS stuff is OT for the CMF list. Please follow up on zope-pas@zope.org
> or the equivalent Gmane newsgroup).
>
> On 12/27/2012 01:22 PM, Maurits van Rees wrote:
>> Hi,
>>
>> In Products/Plu
On Dec 28, 2012, at 16:51 , Maurits van Rees wrote:
> Op 28-12-12 10:56, Wichert Akkerman schreef:
>>
>> On Dec 27, 2012, at 20:52 , Tres Seaver wrote:
>>
>>> -BEGIN PGP SIGNED MESSAGE-
>>> Hash: SHA1
>>>
>>> (PAS stuff is OT
71 matches
Mail list logo