[Zope-CMF] CMFDefault register method & security

[Chris Withers]

seb bacon wrote:
> 
> can log someone in programmatically without some horrible hack.  Am I
> missing something?

Nope, that's why it's a seperate process.

That said, given that login is Cookie-based, I don't see why the register method
couldn't just set the appropriate cookie and then redirect, rather than
redirecting with the form or URL kludge just so the normal login process can set
the cookie.

thoughts?

Chris