The previous page property works by maintaining a list of pages visited by
the user in the user profile (stored in the user session) and using it to
compare against the previous pages defined in the page property of the page
he is going to visit. If any ONE of the previous pages defined has been
visited by the user ie. it is found in the user profile, then the user is
allowed to visit the page. This is done in the verifySessionContinuity event
of the project.
In your case, a new session is created when you submit from the login page
because the spider session has been removed from the page to prevent it from
timing out. The newly created session will have an empty list of page
visited and therefore the session continuity check fail. To get around with
this, here's what you can do:
In the web event of the submit button of the login page, manually add the
current page to the list of the visited page in the user profile after you
have successfully authenticated the user.
CSpStringsSet visitedPages =
CSpider.getUserProfile().getPreviousPages();
visitedPages.add(getName());
> -----Original Message-----
> From: "Vishal"[EMAIL PROTECTED]
> [SMTP:"Vishal"[EMAIL PROTECTED]]
> Sent: Thursday, July 15, 1999 10:21 PM
> To: [EMAIL PROTECTED]
> Subject: [ND] How to create a new session only on successful login?
>
>
> Thanks for the reply, It worked to the extent that login page
> no longer gets timed out but I can not go to the pages via hyperlinks
> those have 'Login page' in their 'previous page' property.
> Could any body tell how excatly the previous page property works?
>
> TIA
>
> Vishal
>
>
> "DARREN KHOO, CUSD" <[EMAIL PROTECTED]> wrote:
> >> I guess I am able to answer #2.
> >>
> >> To prevent a user who left the login screen for too long from hitting
> >> time-out the moment he logs in, you can remove the spidersession tag
> from
> >> the page or comment it out using html comment style and then put a form
> >> closing tag in its place.
> >>
> >> With that, your page will not contain a session id and when the user
> >> submits
> >> the login form, it will be treated as a new session.
> >>
> >> <HTML>
> >> <BODY>
> >> [[SPIDERPAGE NAME=PgLogin]]
> >>
> >> :
> >>
> >> <!-- comment out the spidersession tag
> >> **SPIDERSESSION**
> >> add a form closing tag below-->
> >> </form>
> >>
> >> [[/SPIDERPAGE]]
> >>
> >> </BODY>
> >> </HTML>
> >>
> >> -----Original Message-----
> >> From: Vishal Gautam [SMTP:[EMAIL PROTECTED]]
> >> Sent: Wednesday, July 14, 1999 4:08 AM
> >> To: [EMAIL PROTECTED]
> >> Subject: [ND] How to creat a new session only on successful login?
> >>
> >>
> >> Hi Eveybody,
> >>
> >> I have a login page built in ND as the first page of the system so
> >> a session starts as soon as somebody hits this page, there are 2
> >> caveats in this-
> >> 1. The unsuccessful logins leaves a lot of orphan sessions in ND.
> >> 2. If a user leaves his machine at login page and comes after
> >> the time out, he/she does'nt like the idea of session getting
> >> expired before the login.
> >>
> >> I think I can use CSpider.removeUserSession() for the #1 but I
> >> need some suggestions for the #2. Is it possible to make a
> >> login page outside of ND and that would send the form results (loginID
> &
> >> pwd)
> >> to ND's security Objects on submit so that atleast accessing login
> >> page will not start a new session.
> >>
> >> TIA
> >>
> >> Vishal
> >>
> _________________________________________________________________________
> >>
> >> For help in using, subscribing, and unsubscribing to the discussion
> >> forums, please go to:
> http://www.netdynamics.com/support/visitdevfor.html
> >>
> >> For dire need help, email: [EMAIL PROTECTED]
>
> _________________________________________________________________________
>
> For help in using, subscribing, and unsubscribing to the discussion
> forums, please go to: http://www.netdynamics.com/support/visitdevfor.html
>
> For dire need help, email: [EMAIL PROTECTED]
_________________________________________________________________________
For help in using, subscribing, and unsubscribing to the discussion
forums, please go to: http://www.netdynamics.com/support/visitdevfor.html
For dire need help, email: [EMAIL PROTECTED]
