Release Notes

IMPORTANT NOTES FOR 0.8.8b1

NOTE: This release requires Zope 2.2.x

NOTE: This release requires ZPatterns 0.4.3b1, WHICH IS NOW INCLUDED

NOTE: When upgrading to 0.8.8b1 or later from a previous version, BE SURE to go into the Role Mappings tab of each user source and hit "Change". This will refresh some internal persistent state.

Bug fixes in 0.8.8b1

• Fixed ownership problems again -- having UnownableOwner as an instance attribute can't work right.
• Fixed to make logging out of Basic Cookie users work when using a cookie domain, etc.

New Features in 0.8.8b1

• Implemented the "rootUsers" patch internally to LoginManager if it's not patched in the Zope itself.
• Implemented the local roles improvement patch into LoginManager - supplied users (rootUsers or LoginUsers).
• Dropped compatability with zope 2.1.x and earlier, reducing complexity.
• Compatability with latest ZPatterns (0.4.3), including improved way of dealing with Zope 2.2 Ownership issues, and allowing DataSkin propertysheets on LoginUser sub-ZClasses. Also updated for new ZClass-compatible PlugIns
• Support for Secure cookies in Basic Cookie Auth (for e.g. SSL-only sites)
• Fixes to not returning mutables as roles and domains lists, analogous to the Zope <2.2.0 securiy issue.
• UserSources caches now expire, by default after 15 minutes. There is a property on the Properties tab of user sources to adjust this.