[Zope] Permissions logic and redirecting failed logins cleanly

Jason Cunliffe jasonic@nomadicsltd.com
Thu, 14 Sep 2000 14:53:58 -0400


We have folder on our site with a list of links to restricted pages and
downloadable binary objects.

1. 'Anonymous' can view the index_html of the top level folder for this part
of the site.

I did this by selecting 'Security' tab of my Zope folder, and then
deselected the 'Aquire permissions' boxes for
'View' and 'Access Content Information'
I then added 'View'  permsission manually for role 'Anonymous'

I did the same for 'index_html' but also manually added 'Access Contents
Information' permission for role 'Anonymous'

Everything works fine. Anyone can read about it an see the links to objects
below this point, but clicking on them or typing in direct URL will open a
{user, password}login dialogue box. Good.

Now if people do not enter a valid login, after a few tries it bounces as
you would expect to a Zope error screen. This is nice when you expect it,
but inexperienced users are confused or think the site is 'broken' when in
fact it is working.

What we need is to redirect 'Anonymous' users [or indeed anyone] to another
page if their login fails. For example:
"The item your tried to access is restricted and requires member login
Contact mailto:webmaster@thissite.com with your request

click [HERE] to return

How to detect and redirect to a page like this?

Thanks for any suggestions
- Jason
Jason CUNLIFFE = NOMADICS.(Interactive Art and Technology).Design Director