Ben Sizer wrote: > On Nov 9, 7:47 am, Steve Holden <[EMAIL PROTECTED]> wrote: >> OK, I've finished the rewrite and I'd appreciate any comments. > > As with the first identity document I saw, it's quite clear about how > to prevent access to a given resource but entirely vague on what it > does with users it deems unsuitable. One sentence says, "throw a > suitable IdentityException", but which IdentityExceptions are > available, and how do I know which is suitable, and what sort of > feedback does that give to the end user, and can I customise that? > Further up it has said, "you will be redirected to the login page where > you must authenticate yourself", but I don't know if that is always the > case. Besides which, that is not always the kind of behaviour you are > likely to want, especially if the user is already logged in and just > lacks permissions, so if there is an alternative (or not!) it would be > useful to know this. > > Also, it slightly glosses over how to create users in the actual app, > rather than via Catwalk or the shell. My guess is that 99% of projects > are going to be asking users to register themselves in some way, so > that should be considered the norm when it comes to creating a new user > object. A very simple Kid template showing a sample registration form, > and a trivial controller method showing how this works, would be a > pleasant addition. > > I think the bit where it says, "If you want to log who's making updates > in the DB you can get this information from the User object" is a bit > unnecessarily specific - the information is about the current user, > whether they're making updates or not. Correct? (I am somewhat new to > using Identity myself.) > > Finally, the page's URL is misspelt, for what it's worth. > Thanks, Ben, I'll try to accommodate these comments int he next update - your remarks are relevant and useful.
regards Steve -- Steve Holden +44 150 684 7255 +1 800 494 3119 Holden Web LLC/Ltd http://www.holdenweb.com Skype: holdenweb http://holdenweb.blogspot.com Recent Ramblings http://del.icio.us/steve.holden --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears?hl=en -~----------~----~----~----~------~----~------~--~---
