Hi, thanks for the reply.<br>
I did what you asked and the error log produced these messages:<br>
<br>
Unauthorized: <strong>You are not authorized to access this resource.</strong><p>
Username and password are not correct.<br>
Unauthorized: You are not allowed to access 'sql_select' in this context<br><br>
the sql_select error is because my .metadata file is denying requests to it for users with a certain role. <br>
no idea where to go from here i'm afraid<br>
<br>
cheers,<br>
Paul<br>
<br><div><span class="gmail_quote">On 11/18/05, <b class="gmail_sendername">Dieter Maurer</b> <<a href="mailto:dieter@handshake.de">dieter@handshake.de</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Paul Hendrick wrote at 2005-11-16 17:28 +0000:<br>>I'm using CookieCrumbler on a project which sits in / on one server,<br>>and /project in another.<br>>I'd like to secure a part of the site through *.metadata files so that
<br>>users of a certain role can't access it. this is done and works well.<br>>however, when they try to access a part of the site which is secured,<br>>they're:<br>>a- given a log in popup prompt which they don't have the details for.
<br><br>What is "a log in popup prompt"?<br>Do you mean the browser login dialog?<br><br>Usually, you should get the cookie crumblers login form.<br>If you get instead a browser login dialog, this means that<br>
something went wrong. Often, it means that the URL located<br>object itself was not protected but it accesses a protected object.<br><br><br>Reconfigure your "error_log" object (ZMI, "Root Folder")<br>
to not ignore "Unauthorized" exceptions.<br>Reproduce the error and look what the "error_log" might tell<br>you about it.<br><br>--<br>Dieter<br></blockquote></div><br><br clear="all"><br>-- <br>cheers,
<br>paul <br>web : <a href="http://www.currentlyfabulous.com/blog">http://www.currentlyfabulous.com/blog</a><br>