[Zope] RE: Users cannot acces sites

[Mike Renfro]

On Wed, Sep 11, 2002 at 05:35:56PM +0200, Roel Van den Bergh wrote:

> RewriteRule ^/Zope/(.*) /home/zope/2-5-1/Zope.cgi/$1
> [e=HTTP_CGI_AUTHORIZATION:%1,t=application/x-httpd-cgi,l]

I don't know if either of these lines are worth anything to you. I
have site areas protected with basic http user/password
authentication, and I don't use the cgi authorization bits you have
there. Also, if you're running ZServer on port 8080, I don't think the
Zope.cgi rule is doing anything at all.

> When a user tries to enter trough http://rmw.planetinterior.be/RMW he is
> redirected to the login page (as he should be because everyone has to login
> first)
> Login and password are entered correctly (if not U get Login failure) but
> people are still being directed to the login page as if they where not
> logged in.

A few things to verify:

- Can anonymous users see anything on the site at all? I assume the
  login page you mentioned is Zope-generated, but I'm not positive.

- Can authenticated users see a page that you restrict only to them?
  Example: make an index2_html file in a directory, and restrict
  "View" to the Authenticated role by unchecking "Acquire Permissions"
  and checking only the box under "Authenticated". Do anonymous users
  get a login box when they try to view it, and if they enter proper
  information, do they get to see the file's contents?

- What browsers? I recall that early versions of IE5.0x for Windows
  had authentication problems. You might try lynx, w3m, or some other
  text-mode browser as a reference.

-- 
Mike Renfro  / R&D Engineer, Center for Manufacturing Research,
931 372-3601 / Tennessee Technological University -- renfro@tntech.edu