On 10/5/05, Kevin Dangoor <[EMAIL PROTECTED]> wrote: > > I wrote up a draft of my thoughts on what is needed for TurboGears > authentication/authorization: > http://trac.turbogears.org/turbogears/ticket/11
Some questions: 1. Why the restriction on use of session variables--just to avoid clashing with application-defined variables? 2. In "ability to use basic or cookie auth with a login screen", if the auth/auth code itself provides the login screen html, please, please provide a way to bypass it and plug in one's own HTML. This is important for "branded" sites. -- Tim Lesher <[EMAIL PROTECTED]>
