1 Configuring Zope
2 ================
3
4 Make a symbolic link to the example product directory from within the
5 appropriate Zope instance's Products directory:
6
7 cd Zope/instances/Products
8 ln -s /home/paulb/Software/Python/WebStack/examples/Zope/SimpleProduct
9
10 Or copy the example product directory into the Zope instance's Products
11 directory:
12
13 cp -R /home/paulb/Software/Python/WebStack/examples/Zope/SimpleProduct Zope/instances/Products/
14
15 Then configure the etc/zope.conf file to add details of the example
16 application and the WebStack package. In the appropriate section, add the
17 following directives (adjusted for the exact configuration):
18
19 path /home/paulb/Software/Python/WebStack
20 path /home/paulb/Software/Python/WebStack/examples/Common
21
22 Upon starting or restarting Zope, add the example product using the management
23 interface (eg. add "Simple product" as "test") and then visit the anticipated
24 URL; for example:
25
26 http://localhost:8080/test
27
28 Authentication/Authorisation in Zope
29 ====================================
30
31 Like mod_python (and Apache), Zope prevents application-level control over
32 HTTP Basic authentication. However, the authenticator approach can still be
33 used to control access to resources. When the Auth example is deployed in a
34 normal "public" folder in a Zope instance, it is possible to merely supply the
35 desired username and any password to satisfy the elementary security check.
36 However, should the Auth example be deployed in a folder with its own access
37 controls, then all access to the application must first go through the Zope
38 security checks (which entail the proper authentication of the user through
39 the validation of the user's password) before being validated by the
40 elementary security check performed in the AuthAuthenticator class.
41
42 To set up such a protected folder, do the following in the Zope management
43 interface:
44
45 * Choose "Folder" in the menu of objects to add.
46 * Choose an "Id" and "Title", and to "Create user folder", then "Add".
47 * Choose the new folder.
48 * Choose the "Security" tab, and change the "View" permission so that only
49 authenticated users have access.
50 * Add appropriate users to the "acl_users" folder inside the new folder.
51 * Add WebStack resources to the new folder.