*** srichter has joined #zope3-dev | 00:07 | |
*** srichter has quit IRC | 00:08 | |
*** natea_ has joined #zope3-dev | 00:14 | |
*** SteveA_ has quit IRC | 00:20 | |
*** whit has joined #zope3-dev | 00:23 | |
*** natea has quit IRC | 00:25 | |
*** zbir has quit IRC | 00:38 | |
*** srichter has joined #zope3-dev | 00:39 | |
*** srichter has quit IRC | 00:43 | |
*** srichter has joined #zope3-dev | 00:45 | |
*** srichter has quit IRC | 00:45 | |
*** sashav has quit IRC | 00:47 | |
*** sashav has joined #zope3-dev | 00:48 | |
*** srichter has joined #zope3-dev | 00:48 | |
*** ChanServ sets mode: +o srichter | 00:51 | |
*** sidnei has joined #zope3-dev | 00:55 | |
*** povbot has joined #zope3-dev | 01:22 | |
*** whit has quit IRC | 01:27 | |
*** whit has joined #zope3-dev | 01:32 | |
*** whit has quit IRC | 01:33 | |
*** projekt01 has quit IRC | 01:44 | |
*** Alef has joined #zope3-dev | 02:05 | |
*** sidnei has quit IRC | 02:13 | |
*** niemeyer has quit IRC | 02:13 | |
*** Alef has quit IRC | 02:17 | |
*** stub has joined #zope3-dev | 02:32 | |
*** Jim7J1AJH has quit IRC | 03:00 | |
*** Jim7J1AJH has joined #zope3-dev | 03:01 | |
*** zbir has joined #zope3-dev | 03:09 | |
*** tiredbones has quit IRC | 03:26 | |
*** bskahan has joined #zope3-dev | 03:53 | |
*** bradb has left #zope3-dev | 04:06 | |
*** anguenot has joined #zope3-dev | 04:30 | |
*** stub has quit IRC | 04:44 | |
* bmcru is back | 07:15 | |
*** bskahan has quit IRC | 07:42 | |
*** bskahan has joined #zope3-dev | 08:16 | |
*** SteveA_ has joined #zope3-dev | 08:18 | |
*** MacYET has joined #zope3-dev | 08:20 | |
*** dobee has joined #zope3-dev | 08:27 | |
*** stub has joined #zope3-dev | 08:41 | |
*** peaceman has quit IRC | 09:02 | |
*** anguenot has quit IRC | 09:02 | |
*** roym has quit IRC | 09:02 | |
*** SteveA_ has quit IRC | 09:02 | |
*** icecrash has quit IRC | 09:02 | |
*** Theuni has quit IRC | 09:02 | |
*** Hellfried has quit IRC | 09:02 | |
*** bob2 has quit IRC | 09:08 | |
*** bob2 has joined #zope3-dev | 09:08 | |
*** zagy has joined #zope3-dev | 09:08 | |
*** SteveA_ has joined #zope3-dev | 09:08 | |
*** icecrash has joined #zope3-dev | 09:08 | |
*** roym has joined #zope3-dev | 09:08 | |
*** Theuni has joined #zope3-dev | 09:08 | |
*** peaceman has joined #zope3-dev | 09:08 | |
*** Hellfried has joined #zope3-dev | 09:08 | |
*** bmcru has quit IRC | 09:09 | |
*** bmcru has joined #zope3-dev | 09:09 | |
*** stub has quit IRC | 09:09 | |
*** bskahan has quit IRC | 09:09 | |
*** dobee has quit IRC | 09:09 | |
*** zbir has quit IRC | 09:09 | |
*** Aiste has quit IRC | 09:09 | |
*** d2m has quit IRC | 09:09 | |
*** gnosis has quit IRC | 09:09 | |
*** vinsci has quit IRC | 09:09 | |
*** yota has quit IRC | 09:09 | |
*** natea_ has quit IRC | 09:09 | |
*** lucia12345 has quit IRC | 09:09 | |
*** SteveA has quit IRC | 09:09 | |
*** sashav has quit IRC | 09:09 | |
*** VladDrac has quit IRC | 09:09 | |
*** peaceman has quit IRC | 09:13 | |
*** zagy has quit IRC | 09:13 | |
*** bmcru has quit IRC | 09:13 | |
*** roym has quit IRC | 09:13 | |
*** bob2 has quit IRC | 09:13 | |
*** Hellfried has quit IRC | 09:13 | |
*** SteveA_ has quit IRC | 09:13 | |
*** icecrash has quit IRC | 09:13 | |
*** Theuni has quit IRC | 09:13 | |
*** stub has joined #zope3-dev | 09:13 | |
*** dobee has joined #zope3-dev | 09:13 | |
*** bskahan has joined #zope3-dev | 09:13 | |
*** zbir has joined #zope3-dev | 09:13 | |
*** Aiste has joined #zope3-dev | 09:13 | |
*** SteveA has joined #zope3-dev | 09:13 | |
*** sashav has joined #zope3-dev | 09:13 | |
*** natea_ has joined #zope3-dev | 09:13 | |
*** d2m has joined #zope3-dev | 09:13 | |
*** vinsci has joined #zope3-dev | 09:13 | |
*** gnosis has joined #zope3-dev | 09:13 | |
*** yota has joined #zope3-dev | 09:13 | |
*** VladDrac has joined #zope3-dev | 09:13 | |
*** lucia12345 has joined #zope3-dev | 09:13 | |
*** SteveA has quit IRC | 09:15 | |
*** VladDrac has quit IRC | 09:15 | |
*** gnosis has quit IRC | 09:17 | |
*** zbir has quit IRC | 09:17 | |
*** Aiste has quit IRC | 09:17 | |
*** yota has quit IRC | 09:17 | |
*** d2m has quit IRC | 09:17 | |
*** vinsci has quit IRC | 09:17 | |
*** dobee has quit IRC | 09:17 | |
*** stub has quit IRC | 09:18 | |
*** bskahan has quit IRC | 09:18 | |
*** VladDrac has joined #zope3-dev | 09:18 | |
*** stub has joined #zope3-dev | 09:20 | |
*** bskahan has joined #zope3-dev | 09:20 | |
*** Hellfried has joined #zope3-dev | 09:21 | |
*** peaceman has joined #zope3-dev | 09:21 | |
*** Theuni has joined #zope3-dev | 09:21 | |
*** roym has joined #zope3-dev | 09:21 | |
*** icecrash has joined #zope3-dev | 09:21 | |
*** SteveA_ has joined #zope3-dev | 09:21 | |
*** zagy has joined #zope3-dev | 09:21 | |
*** bob2 has joined #zope3-dev | 09:21 | |
*** SteveA has joined #zope3-dev | 09:21 | |
*** dobee has joined #zope3-dev | 09:21 | |
*** zbir has joined #zope3-dev | 09:21 | |
*** Aiste has joined #zope3-dev | 09:21 | |
*** yota has joined #zope3-dev | 09:21 | |
*** gnosis has joined #zope3-dev | 09:21 | |
*** vinsci has joined #zope3-dev | 09:21 | |
*** sashav has quit IRC | 09:22 | |
*** hdima has joined #zope3-dev | 09:34 | |
*** bskahan has quit IRC | 09:38 | |
*** bskahan has joined #zope3-dev | 09:43 | |
*** vlado has joined #zope3-dev | 09:53 | |
*** MJ has quit IRC | 10:16 | |
*** sashav_ has joined #zope3-dev | 10:22 | |
*** sashav_ is now known as sashav | 10:22 | |
*** d2m has joined #zope3-dev | 10:24 | |
*** jinty has joined #zope3-dev | 10:33 | |
sashav | if I try to add a object I1 into a container that only allowes objects of I2 will zope try to find an adapter for I1->I2? | 10:53 |
---|---|---|
*** projekt01 has joined #zope3-dev | 10:54 | |
*** tarek has joined #zope3-dev | 11:04 | |
*** zmi_junkie has joined #zope3-dev | 11:28 | |
zmi_junkie | hi - I have got python 2.3.3 - will Zope 3.1.0 final really, really not run on this ?-( | 11:31 |
*** mgedmin has joined #zope3-dev | 11:37 | |
*** MJ has joined #zope3-dev | 11:45 | |
*** icecrash has quit IRC | 11:53 | |
MacYET | what is the reommended version? :) | 12:00 |
*** zmi_junkie has quit IRC | 12:03 | |
*** andres has joined #zope3-dev | 12:13 | |
*** ignas has joined #zope3-dev | 12:27 | |
*** BjornT_ has joined #zope3-dev | 12:31 | |
*** BjornT has quit IRC | 12:39 | |
*** BjornT_ has quit IRC | 13:00 | |
*** niemeyer has joined #zope3-dev | 13:12 | |
*** Aiste has quit IRC | 13:17 | |
*** Aiste has joined #zope3-dev | 13:18 | |
*** bskahan has quit IRC | 13:25 | |
*** zmi_junkie has joined #zope3-dev | 13:29 | |
*** JoaoJoao has joined #zope3-dev | 13:51 | |
*** bmcru has joined #zope3-dev | 13:51 | |
bmcru | projekt01 - ping | 13:51 |
*** regebro has joined #zope3-dev | 13:56 | |
*** bmcru has left #zope3-dev | 13:56 | |
*** J1m has joined #zope3-dev | 14:01 | |
*** efge has joined #zope3-dev | 14:04 | |
projekt01 | bmcru, yup | 14:20 |
*** andrew_m has joined #zope3-dev | 14:25 | |
andrew_m | hi all.. i need an object browser for zope3 with selection / file upload functionality. planning to do that as a singleton utility. is that a good or bad idea? | 14:26 |
srichter | zmi_junkie: Zope 3.1.x will run on PYthon 2.3.x, but Zope 3.2.x won't | 14:37 |
srichter | there is already code in the trunk that requires 2.4 | 14:37 |
srichter | andrew_m: a utility would not be ideal | 14:38 |
srichter | andrew_m: what you want is probably something similar to the Web UI, right? | 14:38 |
srichter | andrew_m: if so, use views | 14:38 |
andrew_m | srichter: yes.. | 14:38 |
andrew_m | srichter: but for a view i need an object also, right? | 14:38 |
zmi_junkie | 2.4 would be much better - because I might get a separation in installed sitepackes - because of the different major version number | 14:39 |
zmi_junkie | I am lost on a crappy Suse System ;-( | 14:39 |
srichter | andrew_m: yes, but you just told me you want to build an "*object* browser" | 14:39 |
andrew_m | srichter: it just browses for objects and hands back a path | 14:40 |
zmi_junkie | so I might try to get trunk stuff running ;-) | 14:40 |
srichter | zmi_junkie: you can use 2.4 with 3,1x | 14:40 |
srichter | zmi_junkie: you can use Python 2.4.x with 3.1.x | 14:40 |
andrew_m | srichter: like a file open dialog in an application UI | 14:40 |
zmi_junkie | thanks! | 14:40 |
srichter | is this dialog showing Python objects or files ont he file system? | 14:41 |
andrew_m | srichter: zope objects. and there will also be a form to upload e.g. images and create objects like that on the fly | 14:41 |
andrew_m | srichter: and maybe a button to create a folder | 14:42 |
srichter | thus use views to display the objects and doing the file uploading and whatever | 14:42 |
andrew_m | srichter: ok.. the problem i have with that is that someone needs to create an 'objectbrowser' object somewhere initially | 14:43 |
srichter | why? | 14:43 |
andrew_m | so that the views of that object can then be used by other components to browse for objects | 14:43 |
andrew_m | maybe i'm not getting it :/ | 14:44 |
andrew_m | can a view live without a content object of some sort? | 14:44 |
srichter | if you have an object browser, you know your starting point | 14:44 |
srichter | i.e. the root object or folderX | 14:44 |
srichter | have a view on this root object that implements the object browser | 14:45 |
andrew_m | ah.. so i make a view for the folder object that is a browser for that folder | 14:45 |
srichter | yep | 14:45 |
andrew_m | ooke.. that makes perfect sense now - thanks heaps :) | 14:46 |
*** J1m has quit IRC | 14:46 | |
andrew_m | glad i asked | 14:46 |
*** BjornT has joined #zope3-dev | 14:48 | |
JoaoJoao | this Z3 views thingie is fantastic | 14:49 |
*** zbir has quit IRC | 14:55 | |
*** andres has quit IRC | 15:16 | |
*** tiredbones has joined #zope3-dev | 15:30 | |
*** tiredbones has left #zope3-dev | 15:38 | |
d2m | hmm, which package-include loads the introspector and its views ? | 15:43 |
srichter | note it is only loaded if you are in devmode | 15:45 |
srichter | apidoc-configure or zope.app.apidoc-configure | 15:46 |
d2m | srichter: thats what i thought, just trying to find the minimal set of package-includes | 15:46 |
*** peaceman has quit IRC | 15:47 | |
*** zagy has quit IRC | 15:47 | |
*** roym has quit IRC | 15:47 | |
*** bob2 has quit IRC | 15:47 | |
*** efge has quit IRC | 15:47 | |
*** vlado has quit IRC | 15:47 | |
*** Hellfried has quit IRC | 15:47 | |
*** SteveA_ has quit IRC | 15:47 | |
*** SteveA has quit IRC | 15:47 | |
*** Theuni has quit IRC | 15:47 | |
*** efge has joined #zope3-dev | 15:48 | |
*** vlado has joined #zope3-dev | 15:48 | |
*** SteveA has joined #zope3-dev | 15:48 | |
*** bob2 has joined #zope3-dev | 15:48 | |
*** zagy has joined #zope3-dev | 15:48 | |
*** SteveA_ has joined #zope3-dev | 15:48 | |
*** roym has joined #zope3-dev | 15:48 | |
*** Theuni has joined #zope3-dev | 15:48 | |
*** peaceman has joined #zope3-dev | 15:48 | |
*** Hellfried has joined #zope3-dev | 15:48 | |
*** MJ has left #zope3-dev | 15:56 | |
*** M1 has joined #zope3-dev | 15:56 | |
*** M1 is now known as MJ | 15:57 | |
*** MJ has left #zope3-dev | 15:58 | |
*** M1 has joined #zope3-dev | 15:58 | |
*** mkerrin has joined #zope3-dev | 15:59 | |
*** MJ has joined #zope3-dev | 16:00 | |
*** zmi_junkie has quit IRC | 16:02 | |
*** zbir has joined #zope3-dev | 16:12 | |
*** benji has joined #zope3-dev | 16:27 | |
*** d2m_ has joined #zope3-dev | 16:28 | |
*** d2m has quit IRC | 16:28 | |
*** d2m_ is now known as d2m | 16:28 | |
*** sashav has quit IRC | 16:49 | |
*** MrTopf has joined #zope3-dev | 16:58 | |
d2m | is there a way to set the character set when uploading files through FTP ? i did an upload of files without extentions, think that makes the content-type: text/plain and the charset=ASCII or even unknown ? anyway, the ZMI edit form does not work on these files | 17:01 |
srichter | no, FTP is encoding agnostic | 17:06 |
srichter | I think that the standard File implementation that comes with Zope is probably far too immature | 17:06 |
srichter | I am already regretting having put it into the releases | 17:06 |
d2m | so, no workaround ? btw, the files are displayed as text/html | 17:06 |
srichter | it was the first thing I ever contributed to Zope 3 and it was always just fixed up after that; someone should start from scratch | 17:07 |
srichter | I don't know of any | 17:07 |
d2m | ok, bad luck then | 17:07 |
projekt01 | srichter, can you remember that I told you, I think we have a security info lookup (access) and a site hook problem. Right now I try to find it ;-) | 17:19 |
srichter | yeah, I remember talking about it and asking you to write a unit or ftest that proves it :-) | 17:20 |
projekt01 | srichter, I'm pretty sure there is conceptual problem in the secturity proxy or the PAU if you use a "sub site" setup. | 17:20 |
projekt01 | It's not tat easy since I need to setup two sites and 3 utilities | 17:21 |
srichter | I am really not the one to talk about security; I have very little experience ;-) | 17:21 |
projekt01 | ;-) | 17:21 |
*** J1m has joined #zope3-dev | 17:22 | |
srichter | projekt01: there is the one you want to talk to :-) | 17:23 |
projekt01 | ;-) | 17:23 |
srichter | though I think without a working test it is hard to talk about it | 17:23 |
*** J1m is now known as someone_else | 17:23 | |
projekt01 | Hi, yup, I think the problem depends on loosing the location somewhere | 17:24 |
srichter | Can't you create a ftest using standard utilities? this would really help | 17:24 |
* benji points at someone_else: "There he is, officer!" | 17:24 | |
srichter | Jim is not himself today :-) | 17:24 |
benji | :) | 17:24 |
*** someone_else is now known as shshshsh | 17:24 | |
projekt01 | srichter, can you point me to the new test browser package? Perhaps that's the quickest way to write a complex test first for my problem. | 17:24 |
projekt01 | Hi, benji where is the york? | 17:25 |
* benji is not himself today | 17:25 | |
*** shshshsh is now known as J1m | 17:25 | |
benji | projekt01, I had the previous owner of "benji" killed | 17:25 |
J1m | /msg NickServ IDENTIFY <jim's password censored> | 17:25 |
srichter | and Jim needs a new passowrd :-) | 17:26 |
mgedmin | J1m, :-) | 17:26 |
projekt01 | J1m, I think it's time to change your password | 17:26 |
J1m | yeah | 17:26 |
srichter | I created a command /id on my client | 17:26 |
srichter | this way I never have to type this line explicitely anymore | 17:27 |
srichter | it happened to me too many times already ;-) | 17:27 |
ignas | so it's <jim's new password censored> now ? | 17:27 |
*** alga has joined #zope3-dev | 17:28 | |
J1m | ignas, yup | 17:28 |
*** stub has quit IRC | 17:30 | |
*** hdima has quit IRC | 17:30 | |
projekt01 | where can I find the test browser package? Is this called mechanize? | 17:32 |
srichter | zope.testbrowser | 17:33 |
projekt01 | Ah fine, allready in the trunk ;-) | 17:34 |
*** zagy has quit IRC | 17:34 | |
*** zagy has joined #zope3-dev | 17:37 | |
*** tiredbones has joined #zope3-dev | 17:37 | |
*** bradb has joined #zope3-dev | 17:37 | |
*** regebro has quit IRC | 17:38 | |
*** alga_ has joined #zope3-dev | 17:49 | |
projekt01 | J1m, we have to discuss the sub-site setup and the trusted traversal adapter use case once. This isn't working out of the box and is very complex to setup. | 17:53 |
*** salfield has joined #zope3-dev | 17:54 | |
J1m | The issue is that you want to create a subsite with users and they need to be able to traverse the root site to get to them. | 17:55 |
projekt01 | Yup | 17:55 |
J1m | But you don't want to make traversal public in general, right? | 17:56 |
projekt01 | Perhaps I can add a trusted skin layer and a override directive which makes this sub-site setup with more then two PAU on different level working | 17:56 |
projekt01 | Yes | 17:56 |
J1m | First, I think this needs to be addressed with some sort of recipe/howto. | 17:56 |
J1m | One option is to register a special traverser for the root site that is trusted and public. | 17:57 |
J1m | I think the root folder has a special interface. | 17:57 |
J1m | so this should be straightforward, | 17:58 |
projekt01 | Ok, yes | 17:58 |
J1m | There could be an already written zcml that someone can inclide to turn this on. | 17:58 |
J1m | Another policy, that we use for z4i3 is that we want traversal to be always allowed, by default. | 17:59 |
J1m | for that, you provide alternate registrations of the standard traversers that make them public and trusted. | 17:59 |
J1m | Again, this could pe packages as a zcml that isn't used by default. | 17:59 |
projekt01 | Yes | 18:00 |
projekt01 | I guess the best is to write a small sample application/setup together with a howto and explain a real use case | 18:00 |
J1m | so, +1 from me. :) | 18:00 |
projekt01 | Perhaps we can collect all different usecases first | 18:00 |
J1m | I think that would be a lot of work. | 18:01 |
projekt01 | Uhhhhh, Yes | 18:01 |
J1m | I think these two use cases would be a good start. | 18:01 |
J1m | maybe enough | 18:01 |
J1m | and they would provide examples that other people could base other solutions on. | 18:01 |
J1m | so, maybe public-traversal.zcml and public-root-traversal.zcml, with extensive comments explaining what's going on. | 18:02 |
J1m | and why | 18:02 |
*** alga has quit IRC | 18:03 | |
projekt01 | Ok, we have all this trusted/locatable setup already registred and tested in our project. I think we can move them out of the project to a sample package later. | 18:03 |
projekt01 | The usecase is very simple. A company has a extranet and different customers of them have their own section (sublocation of the extranet) | 18:04 |
projekt01 | Now we don't allow them to login in the extranet level but in the subsection. | 18:05 |
projekt01 | them/the customer of the company | 18:06 |
*** tiredbones has left #zope3-dev | 18:07 | |
*** Theuni has quit IRC | 18:08 | |
projekt01 | J1m, but what's the reason not to use trusted locatable adapters as default which makes it possible to traverse to the location where you have access? | 18:09 |
*** tiredbones has joined #zope3-dev | 18:10 | |
J1m | Because I think it is better to be restrictive by default. | 18:11 |
J1m | If other people want to be less restrictive by default, that's ok w me. Why don't you write a proposal. | 18:11 |
J1m | and see what others think | 18:11 |
J1m | ? | 18:11 |
*** edgordon has joined #zope3-dev | 18:12 | |
projekt01 | there is no need for a proposal I think. It's not a "should we" question it's more a "howto" question. I can provide a sample configuration later. | 18:15 |
J1m | You seem to want to change the default policy. I'm OK with that if others agree. For that we need a proposal. | 18:16 |
J1m | I suggested that a sample config with good comments would provide a good howto. | 18:16 |
projekt01 | Cool, I didn't understand this correctly, if you are Ok with a change I can write a proposal. Then we can see if somebody has a good reason against this changes. | 18:19 |
J1m | I'm -.5 on the proposal. | 18:20 |
J1m | I'll defer to the majority if it is for the change. | 18:20 |
J1m | I wouldn't veto the change. | 18:21 |
*** sashav has joined #zope3-dev | 18:22 | |
projekt01 | Ok, you are right with the default restrictive setup. Perhaps we only should offer a good documentation and sample ZCML files for change it to trusted locatable | 18:23 |
J1m | sounds good to me. | 18:23 |
projekt01 | btw, a trusted traversable site is only a security problem if other permission are not set correctly. | 18:24 |
projekt01 | or I'm wrong? | 18:24 |
J1m | It reveals information about a site. | 18:24 |
J1m | It tells you what the names of things are. | 18:24 |
J1m | Or at least allos you do verify that certain names exist. | 18:25 |
J1m | allows | 18:25 |
projekt01 | Ok, but this could be catched up with the right (not found) views. | 18:25 |
J1m | I don't know what you just said. :) | 18:26 |
*** tiredbones has quit IRC | 18:30 | |
projekt01 | forget about the last part. If I got you correct, you will use sub sites for offer a way to not show the page hirarchie? | 18:30 |
J1m | I mean that if you allow traversal of the root to anybode, then anybody can verify that a subsite exists. | 18:31 |
J1m | If you alow traversal to anything, then someone can verify that a url exists. | 18:31 |
J1m | Many people won't want that. | 18:31 |
benji | right, so if you have an area of your site for each customer, a competitor can discern who your customers are by guessing URLs | 18:32 |
projekt01 | And with a not trusted traversable subsite you have to use a two step login, right? | 18:32 |
*** vlado has quit IRC | 18:32 | |
J1m | Or you could define all of the users at the root. | 18:33 |
projekt01 | How does the login concept work with not trusted subsites. This means you allow them to login into your parent site first and then he can introspect other URL as well | 18:33 |
J1m | Or you could let competators determine who your customers are. :) | 18:33 |
mgedmin | J1m, yes? | 18:33 |
*** tiredbones has joined #zope3-dev | 18:33 | |
projekt01 | J1m, Ok, can you explain how you can avoide this with not trusted subsites? | 18:34 |
projekt01 | avoide/avoid | 18:34 |
projekt01 | I guess there is no way to catch users on a site level and allow them to login to a sublevel in another way without the problem you are describing. or I'm wrong? | 18:35 |
projekt01 | How does a setup look like where you can login and not introspect on a shared level like a root for all customers? | 18:36 |
*** MacYET has left #zope3-dev | 18:36 | |
J1m | the only benefit of having them log in at the root is that they would need a login to at least one site to see other others. | 18:39 |
mgedmin | um... has anyone tried implementing an object that can be sorted alongside datetime.date instances? | 18:39 |
J1m | But you are right, if they had any ability to traverse the root, they could discover others. | 18:39 |
*** efge has quit IRC | 18:40 | |
projekt01 | I think having "not trusted travesable sites" is a dead chicken or at least a very rare setup. | 18:40 |
*** edgordon is now known as ed_lunch | 18:40 | |
projekt01 | I really can't think of a "normal" usecase for this. | 18:41 |
J1m | I think having multiple sites in a zope is a rare setup. | 18:41 |
J1m | This isn't an issue without multiple sites. | 18:42 |
projekt01 | What if you don't like to share utilities? We don't offer utilities on the top, each customer has it's own e.g. index "search" utility. That's a normal uscase or not? | 18:43 |
J1m | sharing implies that you have multiple sites. | 18:44 |
J1m | I just said that IMO multiple sites per zope is a rare use case. | 18:44 |
* srichter thinks that multiple sites are rare too | 18:45 | |
SteveA_ | i think 'site' is way too big a concept in zope3 | 18:45 |
SteveA_ | i use it only as a 'place where resources are rooted' | 18:45 |
SteveA_ | but really, i want that to happen dynamically based on vhosting | 18:45 |
* SteveA_ is out on the edge... | 18:46 | |
J1m | site is a missleading name. | 18:46 |
J1m | A site is really only a component manager. | 18:46 |
J1m | a place where you can customize components. | 18:46 |
projekt01 | Sites are also a concept for support less complex utilities. | 18:47 |
SteveA_ | i think persistent customization managed by a content object is complex and offputting to people who come to zope 3 | 18:47 |
J1m | I think that SteveA_'s point has a lot of merit. | 18:48 |
J1m | I do still think that there is a place for local TTW customizatioopn that is easier than what we have now. | 18:48 |
projekt01 | Sites are also a concept for support separation of complexity. | 18:48 |
SteveA_ | hmm | 18:48 |
J1m | hmm :) | 18:48 |
SteveA_ | by adding lots of complexit ;-) | 18:49 |
J1m | lol | 18:49 |
projekt01 | SeveA, but only complexity for developers, not for adaministrators. | 18:50 |
*** whit has joined #zope3-dev | 18:50 | |
projekt01 | And don't forget some application need to change application logic during runtime! | 18:50 |
J1m | They do? | 18:51 |
SteveA_ | projekt01: i use an 'if' statement for that | 18:51 |
SteveA_ | or other variants thereof | 18:52 |
projekt01 | J1m, think about the optimization of xpdl defined wrkflows. | 18:52 |
*** dobee has quit IRC | 18:52 | |
J1m | I'd rather not. | 18:52 |
projekt01 | Ok, not in z3, but most enterprise wfmc workflow engine allows you to optimize workflows processes during runtime. | 18:57 |
*** MJ has quit IRC | 19:05 | |
projekt01 | J1m, benji, srichter, A sub-site setup without trusted adapters (two step login sample from J1m) isn't working at all, because of the security proxy implementation!!! | 19:11 |
projekt01 | The method canAccess etc. can lookup the correct location and will fall back to the global settings. | 19:12 |
projekt01 | So, there is NO way to use a sub-site setup WITHOUT trusted locatable adapters, because the security lookup will need trusted locatable traverser for collect the right settings. | 19:14 |
projekt01 | J1m, all other setup where we discussed before won't work! | 19:15 |
projekt01 | I guess the proxy checker method canAccess and canWrite are not able to handel such setup. | 19:16 |
projekt01 | J1m, is there a way to implement the secruity check concept different and support the lookup correct. | 19:21 |
projekt01 | Perhaps with trusted locateable ICanWrite and ICanAccess adapters? | 19:21 |
*** nederhoed has joined #zope3-dev | 19:26 | |
*** Aiste has quit IRC | 19:45 | |
*** hazmat has joined #zope3-dev | 19:49 | |
benji | projekt01, J1m and benji have been eating lunch, J1m will be back in a minute | 19:52 |
projekt01 | benji, Ok. did you understand my last part? | 19:53 |
benji | nope | 19:53 |
projekt01 | ;-) | 19:53 |
projekt01 | Ok, I'll go to dinner and write a mail to the list later. | 19:54 |
projekt01 | benji, can you tell J1m, that the security "lookup" doesn't work in his concept with "untrusted adapter registred" subsite | 19:56 |
*** MrTopf has quit IRC | 19:56 | |
projekt01 | see you later | 19:56 |
*** ed_lunch is now known as edgordon | 20:00 | |
*** efge has joined #zope3-dev | 20:03 | |
*** BjornT_ has joined #zope3-dev | 20:11 | |
*** tiredbones has quit IRC | 20:11 | |
*** regebro has joined #zope3-dev | 20:15 | |
*** BjornT has quit IRC | 20:23 | |
*** efge has quit IRC | 20:39 | |
*** MJ has joined #zope3-dev | 20:44 | |
*** whit has quit IRC | 20:58 | |
*** tarek has quit IRC | 21:11 | |
*** mkerrin has quit IRC | 21:11 | |
*** tiredbones has joined #zope3-dev | 21:20 | |
*** alga_ has quit IRC | 21:24 | |
*** sashav has quit IRC | 21:28 | |
*** sashav has joined #zope3-dev | 21:29 | |
*** natea_ has quit IRC | 21:45 | |
*** natea has joined #zope3-dev | 21:45 | |
*** tarek has joined #zope3-dev | 22:29 | |
*** ignas has quit IRC | 22:44 | |
*** mgedmin has quit IRC | 22:45 | |
*** niemeyer has quit IRC | 23:03 | |
*** natea_ has joined #zope3-dev | 23:25 | |
*** sashav has quit IRC | 23:33 | |
*** sashav has joined #zope3-dev | 23:34 | |
*** nederhoed has quit IRC | 23:36 | |
*** nederhoed has joined #zope3-dev | 23:36 | |
*** natea has quit IRC | 23:37 | |
*** JoaoJoao has quit IRC | 23:37 | |
*** mgedmin has joined #zope3-dev | 23:41 | |
*** whit has joined #zope3-dev | 23:45 |
Generated by irclog2html.py 2.15.1 by Marius Gedminas - find it at mg.pov.lt!