First let me describe my environment.
I have a Postgresql database that stores all users, and booleans which describe permissions. The users log on in my application using a WebForm, I run a ZSQL Method and set all permissions in the Session.
I manage the security using Session calls, checking each permission and then allow or deny access to the object.
I know that it isn't the best solution, and now I want to change it! :)
Which is the best solution to solve my problem? I found pgUserFolder. But I'm not so sure if this will be the best solution.
Zope maillist - Zope@zope.org
** No cross posts or HTML encoding! **
(Related lists - http://mail.zope.org/mailman/listinfo/zope-announce