Mercurial > kallithea
view tox.ini @ 5548:23a86f1c33a1
auth: note that we never emit authuser "cookies" for the default user
The only place where we set "authuser" in the session is in log_in_user,
which is called only by the internal auth system and by auth plugins.
The internal auth system cannot log a user in as the default user,
because the default user doesn't have a password (and cannot have a
password assigned). Auth plugins cannot log a user in as the default
user, because the user doesn't have the right extern_type. As such, it's
a bug if log_in_user is ever called with the default user (which this
commit documents with an assert).
This realization makes the is_authenticated field of the authuser cookie
redundant, as it's always True. It also emphasizes that is_default_user
and is_authenticated are mutually exclusive.
author | Søren Løvborg <sorenl@unity3d.com> |
---|---|
date | Tue, 08 Sep 2015 11:00:02 +0200 |
parents | 768989c595aa |
children | 6a83b399bb3c |
line wrap: on
line source
[tox] minversion = 1.8 envlist = py{26,27}-{pytest,nose} [testenv] setenv = PYTHONHASHSEED = 0 deps = nose: nose pytest: pytest commands = nose: nosetests {posargs} pytest: py.test {posargs}