Ticket #6256 (closed Bug: worksforme)

Opened 5 years ago

Last modified 3 years ago

Add content rule causes 'Insufficient Privileges'

Reported by: sparcd Owned by: optilude
Priority: major Milestone: 3.0b2
Component: Infrastructure Keywords:
Cc:

Description (last modified by wichert) (diff)

When you select 'Manage content rules' from the rules tab (or from the configlet) then click on the 'Add content rule' button the page returns an 'Insufficient Privileges' error even when logged in as administrator.

Traceback from error_log: 

Traceback (innermost last):
  Module ZPublisher.Publish, line 119, in publish
  Module ZPublisher.mapply, line 88, in mapply
  Module ZPublisher.Publish, line 42, in call_object
  Module zope.formlib.form, line 770, in __call__
  Module zope.formlib.form, line 885, in render
  Module zope.formlib.form, line 764, in render
  Module plone.app.form._named, line 19, in __call__
  Module Shared.DC.Scripts.Bindings, line 313, in __call__
  Module Shared.DC.Scripts.Bindings, line 350, in _bindAndExec
  Module Products.PageTemplates.PageTemplateFile, line 129, in _exec
  Module Products.PageTemplates.PageTemplate, line 89, in pt_render
  Module zope.pagetemplate.pagetemplate, line 117, in pt_render
  Module zope.tal.talinterpreter, line 271, in __call__
  Module zope.tal.talinterpreter, line 346, in interpret
  Module zope.tal.talinterpreter, line 891, in do_useMacro
  Module zope.tal.talinterpreter, line 346, in interpret
  Module zope.tal.talinterpreter, line 536, in do_optTag_tal
  Module zope.tal.talinterpreter, line 521, in do_optTag
  Module zope.tal.talinterpreter, line 516, in no_tag
  Module zope.tal.talinterpreter, line 346, in interpret
  Module zope.tal.talinterpreter, line 891, in do_useMacro
  Module zope.tal.talinterpreter, line 346, in interpret
  Module zope.tal.talinterpreter, line 536, in do_optTag_tal
  Module zope.tal.talinterpreter, line 521, in do_optTag
  Module zope.tal.talinterpreter, line 516, in no_tag
  Module zope.tal.talinterpreter, line 346, in interpret
  Module zope.tal.talinterpreter, line 891, in do_useMacro
  Module zope.tal.talinterpreter, line 346, in interpret
  Module zope.tal.talinterpreter, line 586, in do_setLocal_tal
  Module zope.tales.tales, line 696, in evaluate
   - URL: file:/zopes/plone3/Products/CMFPlone/skins/plone_templates/global_defines.pt
   - Line 8, Column 0
   - Expression: <PathExpr standard:u'plone_view/globalize'>
   - Names:
      {'container': <Products.Five.metaclass.RuleAdding object at 0x84ae330>,
       'context': <Products.Five.metaclass.RuleAdding object at 0x84ae330>,
       'default': <object object at 0x41528>,
       'here': <Products.Five.metaclass.RuleAdding object at 0x84ae330>,
       'loop': {},
       'nothing': None,
       'options': {'args': ()},
       'repeat': <Products.PageTemplates.Expressions.SafeMapping object at 0x84b2b98>,
       'request': <HTTPRequest, URL=http://192.168.37.11:8080/portal/+rule/plone.ContentRule>,
       'root': <Application at >,
       'template': <ImplicitAcquirerWrapper object at 0x847d8b0>,
       'traverse_subpath': [],
       'user': <PropertiedUser 'admin'>,
       'view': <Products.Five.metaclass.RuleAddForm object at 0x84aed70>,
       'views': <zope.app.pagetemplate.viewpagetemplatefile.ViewMapper object at 0x847d930>}
  Module zope.tales.expressions, line 217, in __call__
  Module Products.PageTemplates.Expressions, line 139, in _eval
  Module Products.PageTemplates.Expressions, line 103, in render
  Module Products.CMFPlone.browser.ploneview, line 71, in globalize
  Module Products.CMFPlone.browser.ploneview, line 117, in _initializeData
  Module plone.memoize.view, line 49, in memogetter
  Module plone.app.layout.globals.context, line 169, in actions
  Module Products.CMFCore.ActionsTool, line 164, in listFilteredActionsFor
  Module Products.CMFCore.ActionProviderBase, line 113, in listActionInfos
  Module Products.CMFCore.ActionInformation, line 203, in __getitem__
  Module Products.CMFCore.Expression, line 51, in __call__
  Module Products.PageTemplates.ZRPythonExpr, line 49, in __call__
   - __traceback_info__: path('object/@@iterate_control').checkin_allowed()
  Module PythonExpr, line 1, in <expression>
Unauthorized: You are not allowed to access 'checkin_allowed' in this context

Change History

comment:1 Changed 5 years ago by optilude

  • Priority changed from minor to major
  • Owner changed from somebody to optilude

comment:2 Changed 5 years ago by optilude

Could you please repeat the traceback with verbose-security enabled in zope.conf? I'm not able to reproduce this it seems.

Cheers, Martin

comment:3 Changed 5 years ago by sparcd

Martin,

I can't reproduce this. I've since updated my SVN checkout and this error seems to have gone away.

Ben

comment:4 Changed 5 years ago by optilude

  • Status changed from new to closed
  • Resolution set to worksforme

Cool, me neither. :)

comment:5 Changed 5 years ago by wichert

  • Description modified (diff)

#6312 might have been the real problem here.

comment:6 Changed 3 years ago by hannosch

  • Component changed from Permissions to Infrastructure
Note: See TracTickets for help on using tickets.