# HG changeset patch
# User Florent <florent@secondweb.fr>
# Date 1241518062 -7200
# Node ID 03ebeccf9f1dc7c608aebea41e15b2aa0225fe73
# Parent  89efe0e744cf9f13fcb7832b973303779f418a02
add XXX before 2 calls to self.repo.internal_session() on the web interface side

diff -r 89efe0e744cf -r 03ebeccf9f1d server/repository.py
--- a/server/repository.py	Tue May 05 12:04:47 2009 +0200
+++ b/server/repository.py	Tue May 05 12:07:42 2009 +0200
@@ -497,6 +497,7 @@
         given password. This method is designed to be used for anonymous
         registration on public web site.
         """
+        # XXX should not be called from web interface
         session = self.internal_session()
         # for consistency, keep same error as unique check hook (although not required)
         errmsg = session._('the value "%s" is already used, use another one')
diff -r 89efe0e744cf -r 03ebeccf9f1d web/views/authentication.py
--- a/web/views/authentication.py	Tue May 05 12:04:47 2009 +0200
+++ b/web/views/authentication.py	Tue May 05 12:07:42 2009 +0200
@@ -53,6 +53,7 @@
         return cnx
 
     def login_from_email(self, login):
+        # XXX should not be called from web interface
         session = self.repo.internal_session()
         try:
             rset = session.execute('Any L WHERE U login L, U primary_email M, '