You are not logged in.
Pages: 1
I noticed the GET request caching in IE - I think IE11.
EWB uses IE in its IDE but I am not sure if the ActiveX IE version it might be using is older than the IE version 11 I see when I launch IE itself.
To be clear - after I switched the first authentication request to POST the issue is no longer occurring.
Thanks again for your advice.
And many thanks to AB for the great framework!
Yes, this is true for POST requests.
For some reason I thought that using GET specifically for authentication requests is expected by mORMot but it seems to be working with POST too, at least for the first one.
Thanks.
Hi,
The method Auth in TSQLRestServerAuthenticationDefault appears to specify no "Cache-Control" response headers when it replies with the server nonce in response to the first request [having just the username].
This leads to the browser caching the result and the issue is/would be after the 5 minutes passes and the server nonce that the browser thus cached becomes invalid. This would become a practical issue on re-authentication attempt - e.g. after a period of inactivity. The browser does not send the request to the web server and the client application is left with the old server nonce.
Any thoughts on improving this? (I do realize I could override the Auth method in a descendant class but maybe there is a better existing solution in mORMot)
Or is there some functionality in mORMot to influence the response headers and the "Cache-Control" header in particular?
Thank you.
Alex
Pages: 1