Mailing List Archive: Zope: Users

Deny public access to ZMI

Index | Next | Previous | View Threaded

uskaya at gmail

Jun 16, 2009, 8:36 AM

Post #1 of 4 (1196 views)
Permalink

Deny public access to ZMI

Hello,

Is there a straightforward way of defining which IPs are authorized to
access to ZMI? I want to block public interface access and allow it
only from internal network - VPN. I don't want authentication box to
pop up to any single visitor with a browser.

It is Zope 2.9.4. As I searched, I came across with docs of how to
write scripts to define access rules to the specific folders. Should I
go that way and implement an access rule for /manage?

Thanks,
Ustun
_______________________________________________
Zope maillist - Zope [at] zope
http://mail.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://mail.zope.org/mailman/listinfo/zope-announce
http://mail.zope.org/mailman/listinfo/zope-dev )

lists at zopyx

Jun 16, 2009, 8:49 AM

Post #2 of 4 (1100 views)
Permalink

Re: Deny public access to ZMI [In reply to]

On 16.06.09 17:36, Ustun Kaya wrote:
> Hello,
>
> Is there a straightforward way of defining which IPs are authorized to
> access to ZMI? I want to block public interface access and allow it
> only from internal network - VPN. I don't want authentication box to
> pop up to any single visitor with a browser.
>
> It is Zope 2.9.4. As I searched, I came across with docs of how to
> write scripts to define access rules to the specific folders. Should I
> go that way and implement an access rule for /manage?
I would implement such a policy within a front-end reverse proxy like
Apache.

-aj

Attachments:

lists.vcf (0.31 KB)

uskaya at gmail

Jun 16, 2009, 9:18 AM

Post #3 of 4 (1093 views)
Permalink

Re: Deny public access to ZMI [In reply to]

You mean running Zope behind Apache server with rewrite rule and
stuff? That's what I'm going to do unless Zope itself provides me this
functionality?

Best,
Ustun

On Tue, Jun 16, 2009 at 6:49 PM, Andreas Jung<lists [at] zopyx> wrote:
> On 16.06.09 17:36, Ustun Kaya wrote:
>> Hello,
>>
>> Is there a straightforward way of defining which IPs are authorized to
>> access to ZMI? I want to block public interface access and allow it
>> only from internal network - VPN. I don't want authentication box to
>> pop up to any single visitor with a browser.
>>
>> It is Zope 2.9.4. As I searched, I came across with docs of how to
>> write scripts to define access rules to the specific folders. Should I
>> go that way and implement an access rule for /manage?
> I would implement such a policy within a front-end reverse proxy like
> Apache.
>
> -aj
>
>
_______________________________________________
Zope maillist - Zope [at] zope
http://mail.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://mail.zope.org/mailman/listinfo/zope-announce
http://mail.zope.org/mailman/listinfo/zope-dev )

chris at simplistix

Jun 17, 2009, 2:38 AM

Post #4 of 4 (1102 views)
Permalink

Re: Deny public access to ZMI [In reply to]

Ustun Kaya wrote:
> You mean running Zope behind Apache server with rewrite rule and
> stuff? That's what I'm going to do unless Zope itself provides me this
> functionality?

It's what you should be doing anyway ;-)

Chris

--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
_______________________________________________
Zope maillist - Zope [at] zope
http://mail.zope.org/mailman/listinfo/zope
** No cross posts or HTML encoding! **
(Related lists -
http://mail.zope.org/mailman/listinfo/zope-announce
http://mail.zope.org/mailman/listinfo/zope-dev )

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads