Sounds like a browser caching issue. Make sure you are disabling browser caching with the suitable cache-control and expires response headers.
Many thanks, - Aparajita > On Jul 18, 2016, at 8:47 AM, Mike Vogt <[email protected]> wrote: > > Hi All, > In a fusebox application, I have a script that runs at the 'top' of every > circuit that detects if a session exists, if a session value is a match for > the circuit, and if either case is not true, it calls abandon session, and > redirects the user to a session timeout page. What I've been able to > reproduce is the following. User logs in, then logs out (which also calls > abandon session), then uses the back button and refreshes (F5) the page. What > happens is that the user is redirected to the timeout page, but the code on > the page displayed is executed again, though this time without session > values. According to the docs, a redirect is the last command within a flow > of execution, but it would appear that the circuit continues and the page > code is executed again. > > What am I missing? > > TIA, > Mike Vogt > > The session timeout/user match script I run at the top of each circuit > follows. > > if (session internal id # 0) > If(get session("user_type") #"Substitute") > abandon session > redirect(fusebox.makeurl("WillsubError.SessionTimeOut ")) > end if > > else > abandon session > redirect(fusebox.makeurl("WillsubError.SessionTimeOut ")) > end if > _______________________________________________ > Active4D-dev mailing list > [email protected] > http://list.aparajitaworld.com/listinfo/active4d-dev > Archives: http://active4d-nabble.aparajitaworld.com/ _______________________________________________ Active4D-dev mailing list [email protected] http://list.aparajitaworld.com/listinfo/active4d-dev Archives: http://active4d-nabble.aparajitaworld.com/
