[Zope] Wrong roles returned?

[Christoph Landwehr]

Hi Stefan,

unfortunately it is not that easy. If I log in as a "some_role" user, Zope 
behaves like I discribed. However when I log into the /manage screen as manager 
and than go back to type A document (no authentication necessary) I am still 
authenticated.

Does that mean that for the management interface a cookie authentication is 
used? Just trying to understand ..

Regards
Christoph


Stefan H. Holek wrote:

 > It is very likely that your browser only sends basic auth info when 
challenged by a 401. Use cookie auth (CookieCrumbler) to get around this.
 >
 > Stefan