The traditional mechanism for preventing people from using the back
button is to have a hidden field in every page with a counter value, and
have a corresonding counter value in the user's session. The counter is
incremented each time a page is served. If a request comes in and the
values don't match then the user must have used the back button, so they
are redirected to a page telling them not to do that. I'm not aware of
any JSF tag that implements this but I wouldn't be surprised to find one
exists.
Look no further :-). Shale's token component can be embedded inside your form to catch resubmits. Instead of redirecting you, though, it triggers a validation error that will cause the current page to be redisplayed.
Craig
