[Zope3-dev] Authentication and context wrappers

[Marius Gedminas]

Hi, folks

At the moment authenticated principal is just a name.  In other words,
the actual object is being resolved on every security check.  This poses
certain problems when the principal is defined in a local authentication
service, and the checkers try to verify its access to a naked object.
With no context the appropriate authentication service cannot be found
so the global one is used, and more likely than not the principal is not
present there.

And what if there is one?  Does that mean that the permissions of a
different principal than the one that actually performed the
authentication are used?  Doesn't this pose a security problem?

Marius Gedminas
-- 
Codeworks is available for Zope consulting -- http://www.codeworks.lt/