| Rob Murdoch 2004-04-02, 3:37 pm |
| I am using CS2000. I have an app using the AuthFilter set to Custom Authentication. When a user requests a page in the application and they don't have a valid AuthTicket the AuthFilter correctly sets the MSCSFirstRequestedURL cookie and redirects to Login
.asp. Typically users enter credentials, POST back the form, and login.asp sets the AuthTicket and redirects to the destination in the MSCSFirstRequestedURL cookie.
My problem is when a user changes their mind when viewing the login.asp file for the first time (before the POST). If they follow a link to another document requiring authentication the AuthFilter doesn't reset the MSCSFirstRequestedURL cookie to the new
document. It persists the document originally requested when the login.asp page was first viewed.
Can I change this so that the MSCSFirstRequestedURL cookie will always be updated? The docs indicate that AutFilter resets the cookie if there isn't anything in the cache. How could the account be in the cache if they never submitted any credentials?
|