Followup from last week:
> I'm using AuthCookie and as some of you know, if it determines your > session to be invalid it redirects to a login page instead by way of a > FORBIDDEN response coupled with a custom_response error page. [snip] >...I then thought it'd be neat to include on the login page handler output > a message to tell them how they got there ("Your session has expired", > "Your account has logged on from another location", "Invalid > username/password combination", whatever...). > > At first I thought I could accomplish this by simply doing > $r->notes('LOGINFAILMSG' => 'Your session has expired') if AuthCookie > detected it to be thus, and then in my handler I could retrieve it and > display it. New observations.... It seems that even if AuthCookie returns a FORBIDDEN with a custom_error page set, the $r->notes() don't propagate. Does apache consider the display of the custom_response page to be a completely new request? -Fran