forward-port security fix from 1.3 branch

author: Chris McDonough <chrism@plope.com> 2012-03-30 02:30:32 -0400
committer: Chris McDonough <chrism@plope.com> 2012-03-30 02:30:32 -0400
commit: a9ee05f216a0e8866c11aa377cd8c125ef791e28 (patch)
tree: defe7c42fa3b3f72884640a0d43450425f72a754 /CHANGES.txt
parent: f8636ce5fa8685190358fc83cc2b5ebeaefde8b9 (diff)
parent: 8782def302a98cefdd4a4c1d448f5226acf81103 (diff)
download: pyramid-a9ee05f216a0e8866c11aa377cd8c125ef791e28.tar.gz
pyramid-a9ee05f216a0e8866c11aa377cd8c125ef791e28.tar.bz2
pyramid-a9ee05f216a0e8866c11aa377cd8c125ef791e28.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/CHANGES.txt b/CHANGES.txt
index c3e679b8a..ac22aa36d 100644
--- a/CHANGES.txt
+++ b/CHANGES.txt
@@ -1,6 +1,14 @@
 Next release
 ============
 
+Bug Fixes
+---------
+
+- When no authentication policy was configured, a call to
+  ``pyramid.security.effective_principals`` would unconditionally return the
+  empty list.  This was incorrect, it should have unconditionally returned
+  ``[Everyone]``, and now does.
+
 Features
 --------
author	Chris McDonough <chrism@plope.com>	2012-03-30 02:30:32 -0400
committer	Chris McDonough <chrism@plope.com>	2012-03-30 02:30:32 -0400
commit	a9ee05f216a0e8866c11aa377cd8c125ef791e28 (patch)
tree	defe7c42fa3b3f72884640a0d43450425f72a754 /CHANGES.txt
parent	f8636ce5fa8685190358fc83cc2b5ebeaefde8b9 (diff)
parent	8782def302a98cefdd4a4c1d448f5226acf81103 (diff)
download	pyramid-a9ee05f216a0e8866c11aa377cd8c125ef791e28.tar.gz pyramid-a9ee05f216a0e8866c11aa377cd8c125ef791e28.tar.bz2 pyramid-a9ee05f216a0e8866c11aa377cd8c125ef791e28.zip