Admin screen realoding

[ganu98]

After session timeout admin screen keep refreshing. How can i avoid this.

[Valdus]

My advice is adjust your timeout timer, so that it lasts longer its a gwt thing more than a broadleaf issue. The other fix is set it up to auto log you in and then it should stop refreshing but my advice is not keep up the admin page longer than necessary, the timeout is designed from a security standpoint.

[phillipuniverse]

Actually, this one specifically was a bug in the demo site. The corresponding Jira ticket: http://jira.broadleafcommerce.org/browse/BLC-646 and the fix: https://github.com/BroadleafCommerce/De ... 1d8#diff-0

So essentially, modify applicationContext-admin-security.xml to have this for the sec:logout element:

Code: Select all

<sec:logout invalidate-session="true" logout-url="/adminLogout.htm" logout-success-url="/blcadmin/login.jsp"/>


The logout-success-url was previously set to "/admin.html", which requires user login, but the session is invalid so it redirects to "/admin.html", which requires user login, but the session... etc etc thus getting into an infinite loop. Making that change should resolve it.

[ganu98]

Thanks a lot phillipuniverse

[Valdus]

Okay, that was my mistake then because that is something I've experienced with GWT before so I assumed it was a similar problem.