> > I can see two problems here. The first is that if the target of the
> > internal redirect is a part of the URL namespace which is under the
> > control of a different handler, or where ApplicationPath option was set
> > explicitly to be different, the PYSID would potentially override a valid
>
Graham Dumpleton wrote:
I can see two problems here. The first is that if the target of the
internal redirect is a part of the URL namespace which is under the
control of a different handler, or where ApplicationPath option was set
explicitly to be different, the PYSID would potentially override
Jim Gallacher wrote ..
> I think the automatic session unlock needs to stay. It's just too easy
> for the user to forget a manual unlock, deadlock the session and hose
> their server in very short order.
What though is the consequence of the session lock not being reacquired.
Ie., what happens if
