Chris Withers wrote at 2005-3-31 12:26 +0100: >Dieter Maurer wrote: >> Any user has the "Anonymous" role whether or not it is authenticated. > >Really? > ... >print user.getRoles() > ... > >returns ('Manager', 'Authenticated') when logged in as a manager and >('Anonymous',) when anonymous? > >>>A user will never have Authenticated and Anonymous roles at the same time. >> >> This is wrong. > >See above.
As others already pointed out: There is an inconsistency between what "getRoles()" returns and what roles a user *effectively* has. The inconsistency might be justified as follows: When every user has invariably the "Anonymous" role, this can just be taken a general default that need not be expressed in "getRoles()". -- Dieter _______________________________________________ Zope maillist - Zope@zope.org http://mail.zope.org/mailman/listinfo/zope ** No cross posts or HTML encoding! ** (Related lists - http://mail.zope.org/mailman/listinfo/zope-announce http://mail.zope.org/mailman/listinfo/zope-dev )