On Thu, Sep 18, 2008 at 1:59 PM, Josef Meile <jmeile@hotmail.com> wrote:
Hi,
Thank you for replay . yes I know that product is using cookie based authentication.I want to know that is any work go around to support zope cookie based or form based authentication. Well, I think it won't be included to zope source code. Why to do it? There is already two products for that: CookieCrubmbler and SessionCrubmbler.
I also I used CookieCrubmbler for Cookie based authentication. It Modify the request and server response and edit the header but because by using that we can suppress login window of browser but at the time logout it not modify the server response server send the Basic Authentication with 401 code . By seeing that browser kill user session I want is any other way to kill user session. means by sending any response or can i kill user session I just don't know if this is correct, but as I understand, at the logout time, what the CookieCrumbler does is to reset the authentication cookies. I used it on the past and it worked. I don't know what problem are you having.
Yes you are correct it reset the authenticate cookies but from logout from zope it call zmi_logout beacuse of that again login window prompt I just want to redirect to the login page and also i want user must be logut . As per my knowledge It not possible because session is maintaind by client browser. If you have any information Pleaase help me. Thanks vaibhi
_______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )