[zope2-tracker] [Bug 143376] Re: Unexpected authorization failure during traversal
Tres Seaver
tseaver at palladion.com
Mon Apr 12 09:25:40 EDT 2010
I am unable to reproduce this on a recent Zope instance (2.12 branch
tip)::
$ bin/mkzopeinstance -d /tmp/lp143376 -u zope:r00ler
$ /tmp/lp143376/bin/zopectl fg
/tmp/lp143376/bin/runzope -X debug-mode=on
2010-04-12 09:16:38 INFO ZServer HTTP server started at Mon Apr 12 09:16:38 2010
Hostname: 0.0.0.0
Port: 8080
2010-04-12 09:16:41 INFO Zope Ready to handle requests
then, in the browser:
/manage_addFolder?id=a
/a/manage_addUserFolder
/a/acl_users/manage_users # added 'user1', with password '123'
/a/manage_addFolder?id=b
/a/manage_addPageTemplate?id=index_html # default template uses 'here/title_or_id'
/manage_changePermissions # give 'Authenticated' all permissions of 'Anonymous'
# and clear 'Anonymous'
At this point, I can point another browser at '/a/', get challenged,
provide the 'user1:123' credentials, and see the page.
** Changed in: zope2
Status: New => Incomplete
--
Unexpected authorization failure during traversal
https://bugs.launchpad.net/bugs/143376
You received this bug notification because you are a member of Zope 2
Developers, which is subscribed to Zope 2.
More information about the zope2-tracker
mailing list