[Zope] Re: Every user should have the Anonymous role everywhere (was :Re: [Zope] Authentication, Anonymous and Public)

[Dieter Maurer]

Chris Withers writes:
 > Dieter Maurer wrote:
 > > In Zope, each user has a set of roles.
 > > Any user has the "Anonymous" role. Log-in users may have
 > > additional roles.
 > 
 > I'm not convinced this is true...
The Content Manager Guide (Security, Authorization) states it
this way:

  The "Anonymous" role, which all users have implicitly, ....


This is natural, too.
Why should a registered user have
less authorization than an anonymous one.


Thus, two reasons to change the Zope authorization, such
that each user has implicitely the "Anonymous" role,
if this is not the case now.



Dieter