[Zope-CMF] Using sessions in CMF
Janko Hauser
janko at need-brain.de
Thu Oct 9 17:17:08 EDT 2003
> >
> > Most of the current login methods are already using sessions,
> > especially cookiecrumbler is introduced to wrap basic_auth in a
> > session.
> >
> > So I do not really understand the question.
>
> I want to be able to access the login information from the session
> object so I can just pass around a session id instead of login
> information .... At this point there is no userdata in the session
> object - or am I wrong ?
>
One normaly uses the userid as an identifier to get stored user
information from somewhere (rdb, memberfolder ...). You can do this at
the time of the login once and put this data into a session object,
both parts (authentication and sessions) are using different cookies,
to identify the session object on the server. I do not think, that you
gain much in performance, perhaps it's easier, if the data is
scattered around the system.
Not sure if you mean this. In both cases the cookie itself holds no
data, just the bits needed to clearly identify it.
__Janko
More information about the Zope-CMF
mailing list