[ZPatterns] LoginManager roles problem

Joachim Schmitz js@aixtraware.de
Wed, 10 Oct 2001 14:19:51 +0200 (CEST) 

Tim,

I think I removed it by changing:

class BetterSimpleUser(BetterLocalRolesMixin, SimpleUser):
to:
class BetterSimpleUser(SimpleUser):

in LoginManager.py

and
class LoginUser(DataSkin, BetterLocalRolesMixin, BasicUser, Item):
to:
class LoginUser(DataSkin, BasicUser, Item):

in UserSources.py

but that didn't help.

I think its caused by the following line in the validate function of
LoginManager:

        if user is not None:
            # We got a user, check him out
            user=getattr(user,'aq_base',user).__of__(self)
            if user.allowed(parent, roles): return user

cause the parent is the index_html, but changing that to:
            for p in parents:
                if not user.allowed(p, roles):
                    break
                return user

did also not help.



On Wed, 10 Oct 2001, Tim McLaughlin wrote:

> Joachim,
> This can be fixed by eliminating the BetterLocalRolesMixin and
> BetterSimpleUser from LoginManager.py and UserSources.py.  I can send
> you my *hacked* copy if you want.
>
> Cheers,
> Tim
>
> Joachim Schmitz wrote:
> >
> > Hi,
> >
> > my site structure is like this:
> >
> > root:
> >  acl_users (standard)
> >  mysitefolder: viewable by Anonymous
> >    index_html
> >     acl_users (login-manager with a custumized login form)
> >     otherfolder: viewable only by Authenticated
> >       test dtml document
> >
> > When I now call the /mysite/otherfolder/test
> >
> > not my customized loginform pops up, but the standard httpauthorization from
> > the root acl_users folder.
> > When I cancel the authentication box, I get that Anonymous User has no
> > access to the "test" document, which is contained in otherfolder
> >
> > When I copy the index_html into the otherfolder, it works correctly.
> >
> > Apparently LoginManager checks for the permissions in the parent, which is
> > index_html. Is this a bug or a feature ?
> >
> > Mit freundlichen Grüßen
> >
> > Joachim Schmitz
>
> --
> Tim McLaughlin
> iterationZERO - www.iterationzero.com
> 703.481.2233
>
>

Mit freundlichen Grüßen

Joachim Schmitz

AixtraWare, Ing. Büro für Internetanwendungen
Hüsgenstr. 33a, D-52457 Aldenhoven
Telefon: +49-2464-8851, FAX: +49-2464-905163