Peter Bengtsson wrote at 2005-7-8 13:24 +0100:
>I've learnt that it's better to use getSecurityManager instead of
>REQUEST.AUTHENTICATED_USER
>because it's more secure. Other than that, what is the difference.

The security manager could be changed (e.g. with "newSecurityManager").
"getSecurityManager" would report the change but not "AUTHENTICATED_USER".

-- 
Dieter
_______________________________________________
Zope maillist  -  Zope@zope.org
http://mail.zope.org/mailman/listinfo/zope
**   No cross posts or HTML encoding!  **
(Related lists - 
 http://mail.zope.org/mailman/listinfo/zope-announce
 http://mail.zope.org/mailman/listinfo/zope-dev )

Reply via email to