Hi, I remember having seen discussion and even implementation of a mechanism (javascript function submitFormDisableSubmits in rev. 525629) to avoid double posting. Looking in Nabble I found only this thread http://www.nabble.com/Dev---Double-posting-in-service-and-entity-ECAs-tf1196643.html which is not really related. I read also in http://www.opensourcestrategies.com/ofbiz/ofbiz_webapp_cookbook.txt that we should use <response type="request-redirect" ... But the explanation is not clear to me. Also I find this solution a bit tricky, I think this should be always done without having to worry about.
So I wonder why OFBiz is not using the Synchronizer token pattern as described in "Core J2EE Patterns" from http://docs.ofbiz.org/display/OFBIZ/OFBiz+Related+Books ? The book gives an example of how it's done in Strut for instance. Jacques
