I would like the default to remain that the session is cleared. I think it
should be possible to move the code that is in Turbine into the LoginUser
action. That way it can be easily changed to fit a particular circumstance.
Someone tell me the problem with the following approach.
Move the code from Turbine that clears the session into the beginning of the
LoginUser action. This code can be removed from LoginUser:
if ( data.getUserFromSession() != null )
{
return;
}
Its function can be duplicated by adding the following to the end of
LoginUser:
data.setAction(null);
> >
> > This sure sounds sensible. I just looked into the sources of LogoutUser
> action,
> > and as far as I can tell, it looks like it does just that. Look:
<snip>
> > I believe that it makes impossible for an user to continue session (User
&
> ACL
> > objects) of another, after LogoutUser action is executed. (Jon, or
someone
> who
> > knows this code, plase comment on that)
> >
I do not like LoginUser relying on behavior of LogoutUser.
John McNally
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
