[Zope-dev] Proposed change in the authentication
Chris Withers
chrisw@nipltd.com
Thu, 25 May 2000 20:37:10 +0100
Jim Fulton wrote:
> http://www.zope.org/Members/jim/ZopeSecurity/ProposalToAuthenticateDuringURLTraversal
I wonder whether this would fix the following problem:
http://zope.nipltd.com/public/lists/dev-archive.nsf/ByKey/82AE22A20C7E88AE
What I reckon is happening is that HTTP is being dumb and presenting the
authentication information for the image 'black'. Black knows nothing
about this user (because it's defined in a subfolder) and so throws an
authentication exception, ignoring the fact that _anyone_ should be able
to view this image...
Ideas anyone?
cheers.
Chris