-----BEGIN PGP SIGNED MESSAGE-----
> After spending hours trying to understand the exception handling in
> Zope, I think the unauth redirect code should be completely removed from
> CookieCrumbler. An exception view seems to be a much more appropriate
> solution. I'll write a prototype and report back.
I think you are correct: registering appropriate exception views is the
only sane way out of that jungle. The CookieCrumbler should get out of
the "challenge" business altogether.
Note that CC is largely useless already in any environment which uses a
non-default user folder at the root: all the user folders written in
the past decade already cope with this problem better than CC.
Tres Seaver +1 540-429-0999 tsea...@palladion.com
Palladion Software "Excellence by Design" http://palladion.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----
Zope-CMF maillist - Zope-CMF@zope.org
See https://bugs.launchpad.net/zope-cmf/ for bug reports and feature requests