[Zope-CMF] Plone security?
Dieter Maurer
dieter@handshake.de
Fri, 6 Jun 2003 20:37:42 +0200
David Forslund wrote at 2003-6-5 21:46 -0600:
> I'm fairly new at running plone, but I really don't understand the
> security model. I have added some folders and documents, but for
> some of them, another user gets a popup window asking for a login
> (after they are logged in) to see the document. This doesn't accept
> any users password. It only happens on some files or documents. I
> don't understand what is going on. I've done some editing on users
> permissions, but I can't tell what is causing this.
Shane has written an excellent tool to analyse security problems.
It is called "VerboseSecurity".
You probably need to disable cookie authentication (form based
login) and use HTTP authentication (browser dialog login)
to make use of "VerboseSecurity".
Dieter