Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
1.5.1
-
None
-
None
Description
If a SignInPanel is included in the header of non access protected pages, and the users goes directly to a page that is not the home page, the SignInPanel will sign him in with the remember-me feature (which is right), but then will redirect him to the home page (which is not right if the page is not access protected).
See SignInPanel, line 133 & 136.
=> Add an overrideable method like :
protected boolean shouldRedirectToHomePage() {
return getPage().getClass().isInstance( ((AuthenticatedWebApplication)getApplication()).getSignInPageClass() );
}
Note : Right now, AuthenticatedWebApplication.getSignInPageClass is protected. It has to be changed to public.
That way, if the current page is the sign-in page, the redirect should indeed got to the home page if there is no intercept page.
Otherwise, the requested page has probably no restricted access as it has not been redirected to the SignIn page. So after the automatic sign-in we should just carry on and display the current (and requested) page.