Hi Dieter, thanks for your sanity check! Before I was checking for role "Anonymous", which exists in Python scripts, but apparently not in post_authentication_hook... After reading your posting, I've tried to test if username=="Anonymous user" and it works! Thanks for your help. I've finished that how-to on plone.org and will post its URL once it is approved. Cheers Cyrille Dieter Maurer wrote:
Cyrille Bonnet wrote at 2005-3-3 11:29 +1300:
... Anyway, I am thinking of adding an unvalidated_hook call in ZPublisher/BaseRequest.py, something like:
if user is not None: if validated_hook is not None: validated_hook(self, user) request['AUTHENTICATED_USER']=user request['AUTHENTICATION_PATH']='/'.join(steps[:-i]) else: unvalidated_hook(request)
You should always have a "user" (i.e. "user" should not be "None"). If the user is not authenticated, you should get the "Anonymous user".
The "user is None" case should only occur when the root does not contain an "acl_users" (but then your Zope site is insane).