[Zope-dev] login prompt after letting user change his password.

Anthony Baxter Anthony Baxter <anthony@interlink.com.au>
Mon, 29 Oct 2001 01:52:46 +1100


Or use a session cookie for the user/pw - when the user changes their 
password, change it in the current session, as well. Basic Auth is not
going to allow you to do this at all[1]

Anthony

[1] ok, there's a possibility that you could do browser specific JS to
hack the stored auth credentials, but it's pretty unlikely...

>>> Steve Alexander wrote
> Chris Withers wrote:
> 
> > Clark OBrien wrote:
> > 
> >>It is really confusing for the login to pop up at this point-
> >>particularly because
> >>it looks like it is asking for permissions to change the password (
> >>needs OLD password)
> >>
> > 
> > You're asking for Web browser functionaility to be changed, go bug W3C,
> > Microsoft, Netscape and any other browser vendor you want to ;-)
> 
> 
> You could program something really fancy into the UserFolder that 
> continued to allow the old password until the new password has been 
> used, or one day has passed.
> 
> --
> Steve Alexander
> Software Engineer
> Cat-Box limited
> 
> 
> 
> _______________________________________________
> Zope-Dev maillist  -  Zope-Dev@zope.org
> http://lists.zope.org/mailman/listinfo/zope-dev
> **  No cross posts or HTML encoding!  **
> (Related lists - 
>  http://lists.zope.org/mailman/listinfo/zope-announce
>  http://lists.zope.org/mailman/listinfo/zope )
> 

-- 
Anthony Baxter     <anthony@interlink.com.au>   
It's never too late to have a happy childhood.