Login via DirectAction and the browser reload button
Login via DirectAction and the browser reload button
- Subject: Login via DirectAction and the browser reload button
- From: Katya Yurukova <email@hidden>
- Date: Wed, 23 Jun 2010 22:13:04 +0300
Hi all,
We're using a stateless login page that invokes a DA on submit.
In the DA the user input is validated, a new session is created by
calling this.session() and the home page is returned using
this.pageWirhName(...).
It works as expected and no redundant sessions are created, but there
is a slight problem once the user has logged in.
The URL displayed in the browser's address bar points to the login DA
after redirection to the home page. At least on Firefox the request is
cached, so refreshing the page results in another invocation of the DA
and the creation of a new session. I know this could be avoided if we
check for existing session in the DA but this will work only for the
case when sessionIDs are stored in cookies.
If the sessionIDs are in the URL, however, the initial DA URL does not
contain the session id and existingSession() returns null.
I've come up with a solution for this case, but it involves redirect
with the session ID appended to the request url and I'm not very fond
of it. Another option might be storing the session ID in a cookie and
forget about all the troubles.
In any case, I wanted to check whether there are any other options or
whether I am missing something and I have to handle the session and
the response page in the login DA differently.
Thanks,
Katya
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden