If the user must start his session based on some condition, then
access can be recorded in the session object.
If the user must not start to use the application with a condition,
then i would store access in the database so
your access control code can check the access data in case the user
logs out having entered a required action
and starts another session.
On 28 ago, 06:20, Martin Weissenboeck <mweis...@gmail.com> wrote:
> Hi,
>
> lets say I have 3 functions
>
> def a():
> # some code
> if form.accepts(request.vars, session):
> redirect(URL('b'))
> return dict(form=form)
>
> def b():
> # some code
> if form.accepts(request.vars, session):
> redirect(URL('c'))
> return dict(form=form)
>
> def c():
> return "**** c *****"
>
> a, b and c have their own views. I do not want to allow any user to start at
> function b or c. Everybody has to start at a.
> I think, this problem could be solved using a decorator, but I could not
> find how.
>
> Regards, Martin
