On Tue, Feb 16, 2010 at 6:12 PM, Ron Mast wrote: > I have a login form and I'm validating the user against LDAP. Maybe > someone can explain to me why the following happens. The initial > validation works great...if I type in the wrong username or > password...I get the correct functionality. But after a successful > login and I go back to the login page and type in the wrong username > or password...the behavior is not what I expect...it functions as a > successful login.
If you are setting a session variable upon successful login check the order in which your login checks run. If your session checker runs before your LDAP checker the current behavior is to be expected. If you want it to behave differently, make sure that in the code path for an unsuccessful LDAP check you delete the session variables you have. Jochem -- Jochem van Dieten http://jochem.vandieten.net/ -- Model-Glue Sites: Home Page: http://www.model-glue.com Documentation: http://docs.model-glue.com Bug Tracker: http://bugs.model-glue.com Blog: http://www.model-glue.com/blog You received this message because you are subscribed to the Google Groups "model-glue" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/model-glue?hl=en
