login and get back

mhdez Apr 22, 2009 10:55 PM

Hello, uff this driven me crazy. I get a login form, if a user has user role I redirect to user page else if a user has admin role I redirect to admin page. The thing is: if the admin is login in and the user click the internet explorer back buton he can login again.
My questions:
1. How can I prevent this?
or
2. If I permit the user login again, how can I close the previous session?

Please help me, with this guys!

1. Re: login and get back

troy.sellers Apr 23, 2009 12:59 AM (in response to mhdez)

Have you tried using jbpm page flows for navigation instead of the pages.xml?

From Dan Allen's Seam in Action book (VERY worth a read if u can spare the coin to buy):

\"If, during a page flow, users attempt to return to an earlier page and resubmit the
form, Seam will gracefully redirect them to the current page—the <page> node where
the process token is positioned. The same goes for when users click the refresh button
and the browser attempts to resubmit the form. Of course, the refresh problem has
already been solved by performing a redirect during the transition, but it’s still nice to
know that Seam prevents the double submit anyway.\"

Personally, have yet to implement the page flow.. but apparently it handles it well

Cheers,
Troy
Actions
2. Re: login and get back

troy.sellers Apr 23, 2009 1:27 AM (in response to mhdez)

further discussion on same topic....

http://www.seamframework.org/Community/PagesxmlAndBackButtonEnabled
Actions

Go to original post