Hi, I'm using CookieCrumbler for http-cookie-auth and using ZPT. Therefore I tried to convert the standard DTML-Methods that a CookieCrumbler creates into ZPT and the login_form and logged_in Methods were relatively easy. But I cannot get the logged_out to work. I do net get logged out, even not with calling manage_zmi_logout() (event thoug I only logged in using HTTP-Cookie-Auth) Heres the code for logged_out as DTML-Method, which works: <dtml-if expr="_.SecurityGetUser().getUserName() == 'Anonymous User'"> <h3>Logged out</h3> <p>Come again soon!</p> <dtml-else> You are logged in using HTTP authentication. You may need to <a href="/manage_zmi_logout">log out of the Zope management interface</a>. </dtml-if> And my conversion looks like: <span tal:condition="python: here.REQUEST['AUTHENTICATED_USER'] == 'Anonymous User'"> <h3>Sie sind nun Ausgeloggt</h3> <a href="index_html" tal:attributes="href request/came_from" tal:condition="exists:request/came_from"> Zurück</a> <a href="index_html" tal:condition="not:exists:request/came_from">Zurück</a> </span> <span tal:condition="python: here.REQUEST['AUTHENTICATED_USER'] != 'Anonymous User'"> Sie sind noch mittels HTTP-Authentication eingelogged. Sie sich müssen eventuell <a href="/manage_zmi_logout">aus dem Zope Managment Interface ausloggen</a>. </span> Sorry for the long lines. I think it has to do with the AUTHENTICATED_USER Variable and the original DTML calls SecurityGetUser, but I cannot access this function from python or directly in ZPT. Andreas -- Your boss climbed the corporate ladder, wrong by wrong.