If I see it correctly both, sling and microsling, try to authenticate each request at the jcr repository (which is fine). But currently they store the returned session in different request attributes. This makes migrating code from microsling to sling a little bit hard. I think we should just use the same request attribute to store the session.
WDYT? Carsten -- Carsten Ziegeler [EMAIL PROTECTED]
