Phillip J. Eby wrote: > At 05:45 PM 1/22/2006 +0000, Alan Kennedy wrote: > >>I agree about not sending this information back to the user: it's >>unnecessary and potentially dangerous. > > > Yep, it would be really dangerous to let me know who I just logged in to an > application as. I might find out who I really am! ;)
The point is that there's really no reason to send this to the client. It is certainly conceivable that some app could consider this information sensitive. Jim -- Jim Fulton mailto:[EMAIL PROTECTED] Python Powered! CTO (540) 361-1714 http://www.python.org Zope Corporation http://www.zope.com http://www.zope.org _______________________________________________ Web-SIG mailing list Web-SIG@python.org Web SIG: http://www.python.org/sigs/web-sig Unsubscribe: http://mail.python.org/mailman/options/web-sig/archive%40mail-archive.com
