[Zope] Authentication wierdness

Steve Spicklemire steve@spvi.com
Fri, 15 Feb 2002 08:30:39 -0500


Hi Joachim,

	I'm totally guessing here.. but when Zope2 traverses to an=20
object... it does so as "anonymous". Once the object is found, the=20
security machinery attemts to validate the user, and this is where=20
LoginManager gets involved. My guess is that you have somehow got things=20=

set up so that Anonymous can't see the factory so that the=20
MyDocument_add_form can be accessed, validated, and then displayed. Can=20=

you might try allowing Anonymous to "access contents information" in=20
your PrivatFolder.

-steve

On Friday, February 15, 2002, at 07:30 AM, Joachim Schmitz wrote:

> I have a setup like this
> Zope 2.43 running on Linux:
>
> /
> acl_users (standard Zope)
> PrivatFolder
>  acl_users (LoginManager)
>
> I also created a product MySite, with the ZClasses MyFolder and=20
> MyDocument.
>
> When I now do PrivatFolder/manage
>
> The LoginForm of LoginManager pops up, I can loggin as user "test" who=20=

> has the role manager.
>
> I get the ZMI for this level I see that I am logged in as "test". I =
can=20
> add a DTML method for example. But when select
> MyDocument from the products to add, the Authentication box from the=20=

> root pops up. When I cancel this I get the error message (since I am=20=

> using ZDebug):
>
>
> Unauthorized: User Anonymous User is not allowed to access=20
> PrivatFolder/MyDocument_factory
> ...
> The user, whose roles are ('Anonymous',), would need to have one of =
the=20
> following roles: ('Manager',)
>
> So why I am the Anomyos User in this case, when the ZMI shows that I =
am=20
> logged in as test. Who has the role Manager.
>
>
>
>
>
> Mit freundlichen Gr=FC=DFen                              Joachim =
Schmitz
> --------------------------------------------------------------------
> AixtraWare Ingenieurb=FCro f=FCr Internetanwendungen
> H=FCsgenstr. 33a, D-52457 Aldenhoven
> Telefon: +49-2464-8851, FAX: +49-2464-905163
> --------------------------------------------------------------------
> Key fingerprint =3D DA10 CC82 62F8 1DBB 39A1  1EDC 725B 3317 A8D7 C3A6
> Keyserver: http://germany.keyserver.net/en/
>
> _______________________________________________
> Zope maillist  -  Zope@zope.org
> http://lists.zope.org/mailman/listinfo/zope
> **   No cross posts or HTML encoding!  **
> (Related lists - http://lists.zope.org/mailman/listinfo/zope-announce
> http://lists.zope.org/mailman/listinfo/zope-dev )