-
Notifications
You must be signed in to change notification settings - Fork 3
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
----------------------------- Work against squid negative_ttl when unauthorized For a complete description of the problem solved see: http://mail.zope.org/pipermail/zope3-dev/2006-December/021321.html
- Loading branch information
Adam Groszer
committed
Jan 2, 2007
1 parent
430add0
commit ff2cb50
Showing
2 changed files
with
45 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,37 @@ | ||
############################################################################## | ||
# | ||
# Copyright (c) 2003 Zope Corporation and Contributors. | ||
# All Rights Reserved. | ||
# | ||
# This software is subject to the provisions of the Zope Public License, | ||
# Version 2.1 (ZPL). A copy of the ZPL should accompany this distribution. | ||
# THIS SOFTWARE IS PROVIDED "AS IS" AND ANY AND ALL EXPRESS OR IMPLIED | ||
# WARRANTIES ARE DISCLAIMED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED | ||
# WARRANTIES OF TITLE, MERCHANTABILITY, AGAINST INFRINGEMENT, AND FITNESS | ||
# FOR A PARTICULAR PURPOSE. | ||
# | ||
############################################################################## | ||
"""Unauthorized Exception View Class | ||
$Id$ | ||
""" | ||
__docformat__ = 'restructuredtext' | ||
|
||
from zope.app import zapi | ||
|
||
|
||
class Unauthorized(object): | ||
|
||
def issueChallenge(self): | ||
# Set the error status to 403 (Forbidden) in the case when we don't | ||
# challenge the user | ||
self.request.response.setStatus(403) | ||
|
||
# make sure that squid does not keep the response in the cache | ||
self.request.response.setHeader('Expires', 'Mon, 26 Jul 1997 05:00:00 GMT') | ||
self.request.response.setHeader('Cache-Control', 'no-store, no-cache, must-revalidate') | ||
self.request.response.setHeader('Pragma', 'no-cache') | ||
|
||
principal = self.request.principal | ||
auth = zapi.principals() | ||
auth.unauthorized(principal.id, self.request) |