Sorry pressed send button by mistake. I was saying that I believe auth lives in memory so no db access is supposed to happen, and I go back and say that RBAC will need db access all times. Khalil
On Nov 18, 2011 3:37 PM, "Khalil KHAMLICHI" <khamlichi.kha...@gmail.com> wrote: > I am not an expert in this, but I believe that : > > @auth.requires_login() > > there would be no database quieries because auth is stored in session > which I believelives in >