[Zope] Question about security

[Dieter Maurer]

Joaldo Junior writes:
 > Does anyone can inform if is there any kind of function, 
 > which a common user can change your password by the same way a superuser can
 > do in ACL_User?
Look at the built-in Zope API reference: User object.
The User object has methods to read and change the information
associated with a user.

These methods are (of cause) protected such that only
users with high priviledges can execute them.
You will need to set a proxy role for the DTML object
that calls them, in order to allow less priviledged users
to call them.


Dieter