[Zope] AUTHENTICATED_USER reverts back to Anonymous User

Jens Vagelpohl jens@zope.com
Fri, 30 Nov 2001 09:10:11 -0500


what version of zope are you running? some versions had a "shortcut" in=20=

the security mechanism that, while speeding things up a little, produces=20=

the symptoms you see.

AFAIK this has been fixed a little while ago. 2.4.3 should not have this=20=

behavior anyore.

jens


On Friday, November 30, 2001, at 08:33 , Etienne Labuschagne wrote:

> Hi there,
> =A0
> This is what happens
> =A0
> 1) User enters site (REQUEST.AUTHENTICATED_USER =3D=3D "Anonymous =
User")
> 2) User logs in when accesing=A0a "secure" page.=20
> (REQUEST.AUTHENTICATED_USER =3D=3D "myUser")
> 3) User goes to page that is available for Anonymous Users but which =
is=20
> rendered differently for logged in users.=A0 Page must now render as =
if=20
> user is logged in, but does not because REQUEST.AUTHENTICATED_USER =3D=3D=
=20
> "Anonymous User" again??
> =A0
> After doing some reading it seems as if this is a problem with the way=20=

> HTML authentication works (Zope does not receive a browser =
authentication=20
> challenge or something like that).=A0 Is there a way around this other =
than=20
> using cookies or url mangling?
> =A0
> Thanks
> Etienne