创建Plone私有站点的最佳方法是什么 [英] What is the best way to create a Plone private site
问题描述
我想了解每种解决方案,并且只保留最好的解决方案,以对每个匿名用户关闭网站".匿名用户应仅具有登录表单.
I would like to know every solutions and keep only the best one to "close a website to every anonymous user". An anonymous user should only have the login form.
现有方式:
- 使用zope安全性(在root plonesite上删除对匿名用户的查看权限)
- 使用工作流程(更改发布状态的安全性映射)
- 在具有http auth的代理中使用apache
还有其他解决方案吗?最好的是什么?
Is there other solutions ? What is the best one ?
注意:即使无法访问登录表单,在尝试使用zope安全性时我也遇到了问题,因此请详细说明实现这一点的方法.
Note: I had an issue when trying using zope security even the login form was not accessible, so please details a bit your way to achieve this.
推荐答案
我会使用 http://pypi.python.org/pypi/iw.rejectanonymous .它将自定义遍历钩子添加到Plone站点,并且仅允许访问登录表单以及匿名用户使用的登录资源.
I would use http://pypi.python.org/pypi/iw.rejectanonymous. It adds a custom traversal hook to the Plone site and only allows access to the login form and the resources used by it for anonymous users.
请记住,在这种情况下,您无法在前端缓存中缓存任何页面或列表,因为无需身份验证即可访问这些页面或列表.在Varnish中缓存CSS,JS和图像资源仍然是一个好主意,您可以在浏览器缓存中缓存内容.
Keep in mind that in this scenario you cannot cache any pages or listings in a frontend cache, as that would be accessible without authentication. Caching CSS, JS and image resources in Varnish is still a good idea and you can cache things in the browser cache.
这篇关于创建Plone私有站点的最佳方法是什么的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!