At the moment the solution I have settled on (thanks splee) is subclassing one of the original providers and changing it so that password validation always fails, then using the failure url to initialize the process and manually logging the user in at a separate return url.
--~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears?hl=en -~----------~----~----~----~------~----~------~--~---

