Hi. Currently I'm developing a web application with users and sessions.
I need avoid the users re-enter the password, something such as clear the redirect_to(:back) when log in is successful. Several sites use this system (Facebook, in example). I don't know if I must clear the history (?), because when I use the 'back' in the web browser the rails controller doesn't interpose.
I need your help.
Thanks.
Hi,
You shouldn't try to clear the browser history (you can't). Instead, when someone visits the login page your controller should redirect to the home screen if that user is already logged in.
Also, use authlogic and watch the railscast on how to use it. That should show you the right way.
Hope this helps! Simon
Simon Baumgartner wrote in post #985966:
Hi,
You shouldn't try to clear the browser history (you can't). Instead, when someone visits the login page your controller should redirect to the home screen if that user is already logged in.
Also, use authlogic and watch the railscast on how to use it. That should show you the right way.
Hope this helps! Simon
Thanks for reply, Simon.
Keep up to date with Rails on Twitter and This Week in Rails
Policies: Conduct, License, Maintenance, Security, Trademarks