[ZDP] BackTalk to Document Zope Developer's Guide (2.4 edition)/Security

nobody@nowhere.com nobody@nowhere.com
Thu, 12 Sep 2002 11:30:57 -0400

A comment to the paragraph below was recently added via http://www.zope.org/Documentation/Books/ZDG/current/Security.stx#2-0


    A typical web application needs to be securely managed.  Different
    types of users need different kinds of access to the components
    that make up an application. To this end, Zope includes a
    comprehensive set of security features.  This chapter's goal is to
    shed light on Zope security in the context of Zope Product
    development.  For a more fundamental overview of Zope security,
    you may wish to refer to the *Zope Book*, Chapter 6, "Users and
    Security":http://www.zope.org/Members/michel/ZB/Security.dtml .
    Before diving into this chapter, you should have a basic
    understanding of how to build Zope Products as well as an
    understanding of how the Zope object publisher works. These topics
    are covered in Chapter 2 and Chapter 3, respectively.

      % Anonymous User - Sep. 12, 2002 11:30 am:
       Our web-page is designed in a way to allow specific user groups access to certain parts of it. In order to
       check this function we created in a lower hierarchy of the parent folder a new folder (test folder). Access
       to the new folder has been restricted by cancelling all acquire permission settings.
       The manager however obtains all rights to access and administrate the web-site. Another self-defined user
       group shall only be able to view the defined pages.
       When the web-site is reloaded in a new Internet Explorer Window the access is denied in general.
       No matter whether this is attempted by the manager itself or some restricted user, who has been given
       permission to enter specific parts of our web-pages. Unfortunately this is not the expected result. Has
       anybody got a clue what is wrong ? What could be done to access a limited part of our system ?
       contact: gis@nordschwarzwald-region.de