New Message: Re: responderattributes/members in #security script
webmaster at userland.com
webmaster at userland.com
Mon Oct 8 11:57:22 PDT 2001
A new message was posted:
Address: http://frontier.userland.com/discuss/msgReader$8894
By: Eric Soroos (eric-ul at soroos.net)
/1. #security script to either get the cookie or check the LDAP directory (and write the cookie) 2. #filters.firstFilter script that reads the cookie and tests membership (or adds the member if that is what I want to do)
Does that sound right? /
Roughly. I have users and capabilities, so I'm a little more advanced than the basic frontier groups structure. I have one implementation that's an integration of user.people and groups, and one that's xml-rpc/ldap based.
#security:
If cookie(s)
validate cookies, establish identities
if no valid identities
redirect - login page
Check for lowest level of permisssion // optional, depends on if you've got a fully closed system and you can find the details.
At this point, you have at least minimal permission.
#first filter
Check for additional required permission due to a table or page based #members directive. Figure out what credential to use.
Do further filtering on the premissions required in the object.
Assemble the adrMembers bits in the pta. (e.g. pta^.adrMemberInfo = mainresponder.members.getMemberTable( pta^.defaultMembershipGroup, userEmail))
Your best bet is to dump the page tables that you have, and figure out what you can get where, knowing that the #security is called really early in the process. I can take a look at code if you like.
eric
This is a Manila site.. http://manila.userland.com/.
More information about the Frontier-Server
mailing list