22 Mar
2007
22 Mar
'07
5:26 p.m.
--On 22. März 2007 14:09:00 -0400 Thomas Bennett <bennetttm@appstate.edu> wrote:
Long story short:
Is it appropriate to change self.REQUEST.AUTHENTICATED_USER.name to self.REQUEST.REMOTE_USER ?
Using AUTHENTICATED_USER isn't recommended (since ages). You should always use the SecurityManager API: from AccessControl import getSecurityManager user = getSecurityManager().getUser() username = user.getUserName() Changing request parameters as a workaround for stinking code is unlikely a good choice. Better fix the related code instead of messing up the REQUEST. -aj