Dieter Maurer wrote:
A user will have the Anonymous role iff they have not supplied any authentication credentials.

Any user has the "Anonymous" role whether or not it is authenticated.


Then how come the following script:

from AccessControl import getSecurityManager
user = getSecurityManager().getUser()
print user.getRoles()
return printed

returns ('Manager', 'Authenticated') when logged in as a manager and ('Anonymous',) when anonymous?

A user will never have Authenticated and Anonymous roles at the same time.

This is wrong.

See above.


Simplistix - Content Management, Zope & Python Consulting
Zope maillist -
** No cross posts or HTML encoding! **
(Related lists - )

Reply via email to