[Zope3-dev] Make principals display userinfo about themselves
Jim Fulton
jim at zope.com
Tue Sep 28 09:57:08 EDT 2004
Stephan Richter wrote:
> On Tuesday 28 September 2004 08:35, Martijn Faassen wrote:
>
>>>You do not need to access or even should access the current principal via
>>>this path. The authenticated principal is stored in the request and the
>>>participation. You can simply register templates as resources that use
>>>the request to extract all user information. See my previous mail on how
>>>to store data on a principal.
>>
>>What if you want to show information on a different user than the one
>>currently logged in?
>
>
> Then you have to give a user the permission to access the software space path
> stated before.
No, if you want to access other users, you should use the authentiaction service API
to do so.
Jim
--
Jim Fulton mailto:jim at zope.com Python Powered!
CTO (540) 361-1714 http://www.python.org
Zope Corporation http://www.zope.com http://www.zope.org
More information about the Zope3-dev
mailing list