[Zope] HTTP authentication question

Dieter Maurer dieter@handshake.de
Sun, 30 Sep 2001 23:51:58 +0200 (CEST)


jimherz@yahoo.com writes:
 > I have a site that achieves user authentication from a home page by
 > directing them to a restricted method causing the browser to pop up
 > its default authentication window, and redirecting them back to the
 > home page after a successful login.  From what I've read, the browser
 > will use HTTP authentication in this case.  
 > 
 > After the login takes place, I expect to be able to access the user
 > name from AUTHENTICATED_USER.getUserName().  I am able to access the
 > correct user name in some methods, but in others, the above method
 > produces 'Anonymous User'.  
An "optimization" removed in Zope 2.4.1....

Either upgrade or protect you methods with any permission,
e.g. "View" or "Acess contents information".
Do not let them remain public.


Dieter