Alex, I agree. I would have once said otherwise (I think I *did* say otherwise), but this pattern has now come up in production code at least five times, and I think a change is called for.
On 1/4/08, Alex Milowski <[EMAIL PROTECTED]> wrote: > > Multiple times I've found myself needing the Request instance in > checkSecret() > on Guard so that I can store the authenticated user's information on the > Request as an attribute.
