"[EMAIL PROTECTED]" <[EMAIL PROTECTED]> writes: > If user signs up and form is validated with an okay, they should > automatically be logged in. Otherwise, they shouldn't.
Hmmm... This is one of the approaches, yes. There are other such as requiring some sort of approval for the subscription, requiring that the user enters his username/password, etc. Big sites -- IBM, for example -- usually use the second form to type username and password again. Or use some kind of validation link to check for a valid email account. > Looking at the default login code it seems just passing user_name and > password to /login will cause authentication to take place. But i > don't see specifically where in the code this happens. It happens at the identity provider. It will validate against the informed data and return a success or failure. The code if you use SQL Object is on soprovider.py, starting on line 208... -- Jorge Godoy <[EMAIL PROTECTED]> --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears -~----------~----~----~----~------~----~------~--~---
