[Zope-dev] Securing login with SSL via RESPONSE?

[Steve Alexander]

> Assume I make a hypothetical SSLRedirect product, modelled on 
> CookieCrumbler. There is no reasonable way to keep them in the same
> folder and make sure that SSLRedirect gets to the REQUEST/RESPONSE
> before CookieCrumbler, correct? I.e. such SSLRedirect product would
> have to be in a subfolder relative to CookieCrumbler so that it gets
> traversed first.

If you need both CookieCrumbler and this new behaviour, you could derive 
your product from CookieCrumbler. This would ensure that things happen 
in the correct order.

--
Steve Alexander