[Zope] Authenticated user in Session onAdd methods?

Dieter Maurer dieter@handshake.de
Mon, 2 Sep 2002 18:56:18 +0200


Julian Melville writes:
 > If the object which is calling the SecurityGetUser().getUserName() is
 > accessible anonymously (i.e. user doesn't have to be authenticated to view)
 > then Zope always appears to return 'Anonymous User' even if the user has
 > logged in.
 > 
 > If you add some security on the item (say, remove  View privilege for the
 > anonymous user) then all of a sudden you will get the correct user info
 > returned.
 > 
 > I think this is very weird, but came across it myself last week. (2.5.1 on
 > Windows 2000)
This should no longer be the case with modern Zope versions (above 2.5, at
least).

  In fact, it was never the case with access to anything protected
  by a permission, even a permission granted to "Anonymous".

If you are sure that it behaves as you described, then please file
a bug report to <http://collector.zope.org>.


Dieter