[Zope] role, user defined roles, and inclusion
Chris Withers
chris at simplistix.co.uk
Mon Apr 4 08:56:58 EDT 2005
Florent Guillaume wrote:
> When doing user.getRoles(). Because as Tres said more clearly than me,
> every user can do what the Anonymous role can, so it's just being
> consistent to express that in user.getRoles(). IMHO.
Well yours is the only userfolder implementation that does.
While I agree in the security short circuiting code, I think having a
getRoles return Anonymous and Authenticated at the same time is bizarre...
Chris
--
Simplistix - Content Management, Zope & Python Consulting
- http://www.simplistix.co.uk
More information about the Zope
mailing list