RML wrote:
Ok, this suggest a solution in the application and not in the environment it
runs in. Is that realy how it works? I would like to think this problem is
best dealt with on the level where you can control it all in one procedure
like in the webserver/webclient. But if this is how it works...
"Justin Wood (Callek)" <[EMAIL PROTECTED]>
schreef in bericht news:[EMAIL PROTECTED]
RML wrote:
Using CTRL-N creates a new window with the same session-id, indeed. So my
question takes on an other course (knowing that all browser have this
kind of behaviour): If a user asks for his personals on tab A and tab B
in FF (for example), deletes his data on tab B and then tries to edit it
on tab A, than I have a situation that I don't want. How can I act?
Depending on what exactly your application does, one of the following two
possibilities may work.
1)
"Your personal data has been deleted, by you in a different browser
context."
2)
Same as 1 with the added bonus, "It is possible, however to
<link>restore</link> your personal data based on the edits you attempted
to make if you'd like."
Note, I'm a poor UI designer, but the theory is sound.
~Justin Wood (Callek)
Well I have limited knowledge about the type of app you are creating,
but for any app I would not perceive to have full controll over a
_user_'s environment, nor would I attempt it. Having these types of
safeguards in your app is a good thing, even if you find a way to
(hopefully) controll it in the environment.
~Justin Wood (Callek)
_______________________________________________
Mozilla-security mailing list
[email protected]
http://mail.mozilla.org/listinfo/mozilla-security
