On Feb 9, 2008 1:51 AM, Felix Schwarz <[EMAIL PROTECTED]> wrote: > Kevin Horn schrieb: > > Perhaps even the user object could be pluggable, allowing users to > > create their own user objects. Most people shouldn't need this, but I'm > > sure it would be useful to some. > > > > Thoughts? > > IMHO the user object MUST be pluggable - especially if you don't have a > simple user model like identity assumes but different users which are > authenticated against different authentication sources. > > Please don't assume that everything is username+password. There is more: > Sometimes clients (mostly banks) want a branch number before. Others have > a > user name but require something what is essentially a second password. So > smooth 95% of the use cases (username+password) but don't make the more > complicated ones impossible. > > And last but not least it should be easy to extend the auth* stuff for > things like captchas and form tokens. An implementation built into the > standard library is something (IMHO) which can be post-poned after 2.0. > > fs > > Hmmm, hadn't thought about captchas...what exactly would that require? Just the ability to show the user some extra info, and receive some extra info from the user? or is there something else I'm not thinking of?
Kevin Horn --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears Trunk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears-trunk?hl=en -~----------~----~----~----~------~----~------~--~---
