Forum OpenACS Development: Re: Expired Cookie

Collapse
2: Re: Expired Cookie (response to 1)
Posted by Dave Bauer on
Malte what does the page say? It is calling permission_p or auth::require_login.

Pages that _do_ something can require login, but I think pages that you can just see someting shouldn't make you renew your session.

Collapse
3: Re: Expired Cookie (response to 2)
Posted by Malte Sussdorff on
it says permission_p, not require_login. This is why I was astonished.
Collapse
7: Re: Expired Cookie (response to 2)
Posted by Dave Bauer on
This happens when the page in question uses auth::require_login instead of
permission::require_permission

Not sure of a way around that. The idea of auth::require_login is to require users to have an up to date login session for certain action (at least that's my understanding of it).

Can't see requiring it for checking read permission though.