Followup from last week:
> I'm using AuthCookie and as some of you know, if it determines your
> session to be invalid it redirects to a login page instead by way of a
> FORBIDDEN response coupled with a custom_response error page.
[snip]
>...I then thought it'd be neat to include on the login page handler output
> a message to tell them how they got there ("Your session has expired",
> "Your account has logged on from another location", "Invalid
> username/password combination", whatever...).
>
> At first I thought I could accomplish this by simply doing
> $r->notes('LOGINFAILMSG' => 'Your session has expired') if AuthCookie
> detected it to be thus, and then in my handler I could retrieve it and
> display it.
New observations....
It seems that even if AuthCookie returns a FORBIDDEN with a custom_error
page set, the $r->notes() don't propagate. Does apache consider the
display of the custom_response page to be a completely new request?
-Fran
