-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 04/04/2011 12:23 PM, Wichert Akkerman wrote: > On 2011-4-4 18:22, Roger wrote: >> Hi Laurence, Stephan >> >> Just because you can write login forms with >> z3c.form this package has nothing to do with >> authentication. That's just a form framework! >> >> Authentication is defently not a part >> of our z3c.form framework and should not >> become one. >> >> Why do you think authentication has something >> to do with the z3c.form library? Did I miss >> something? > > CSRF has nothing to do with authentication. It has to do with securing > forms on websites.