[Zope] Security Question

Max M maxm@mxm.dk
Fri, 15 Mar 2002 08:09:53 +0000


Jonathan Bryant wrote:

> It seems like if I use a proxy role for a method, and a user does not 
> have permissions in that folder AUTHENTICATED_USER.getUserName() 
> returns 'Anonymous User'. Is that correct?


When the user goes to a level higher than the one where he is logged in, 
he *is* anonymous at that level. Permissions sort of trickle downwards 
in the Zope tree. It cannot run uphill.

Aquisition causes this behaviour.

regards Max M