From: Mark R. <mar...@ma...> - 2010-08-06 01:25:26
|
Hey! On 5/Aug/2010, at 6:09 PM, Pascal Robert wrote: >> our application uses a directAction to access a particular function. We dont want the directAction url to be bookmarked >> also, in another instance the user is bookmarking a page and when they access the bookmark it gives them an expired session page. > Ah, so you have DAs with session, so the URL have wosid=xxxx at the end? Avoid sessions :-) Or store sessions id in cookies instead of in the URL if you need sessions. IMO, you WANT the session! Catch the case when the session is expired/invalid and return the page of your choice. Much cleaner since you're never going to be able to stop users from making a note of the URL's to your application! M. |