it's worth noting that although the user isn't authenticated, in the sense
of checking a password (though you could add it if need be, i suppose),
disk/kfs does still check permissions against the user name
and associated groups, reducing the scope for accidents.