Chris McDonough chr...@plope.com added the comment:
For the record, in repoze.who 1.1, the userid string gets base64 encoded in the
cookie so this
should not be a problem. Old cookies continue to work via a b/c shim. I'm
going to close this
issue as a result.
--
status: chatting -
New submission from Michael Pedersen rep...@icelus.org:
Stumbled across an odd issue last night: If a username has an exclamation in it,
and that username is returned as is from an IIdentifier, then the auth_tkt
cookie will be invalid. For instance, if my login were Pedersen!, the auth_tkt
Chris McDonough chr...@plope.com added the comment:
FTR, this is actually a Paste issue, not a repoze.who issue. The only way to
solve this would be
to change Paste's paste.auth.auth_tkt module or disuse it.
--
status: unread - chatting
__
Repoze Bugs
Michael Pedersen rep...@icelus.org added the comment:
Sorry about that. Reporting this to the paste team. If you wish to use this to
track the upstream issue, go ahead and leave it open. Close it if not.
__
Repoze Bugs b...@bugs.repoze.org
Michael Pedersen rep...@icelus.org added the comment:
Filed bug with python paste: http://trac.pythonpaste.org/pythonpaste/ticket/380
__
Repoze Bugs b...@bugs.repoze.org
http://bugs.repoze.org/issue98
__