Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
Our current application is working fine but when you try to misbehave like we found out that When login with same user in multiple tab with different organization(there is a organization dropdown in the master page which sets the cookie whenever it is changed.)
in tab one it is org 1 and tab 2 it is org2 , cookie has the later org 2 in it but when we go back in tab1(which had org1) and save the record org 2 will be saved with the record
So can some one share some sort of a checklist with us which address these types of problem.
Unfortunately there is not much you could do about this. Browsers share cookies between tabs. And forms authentication uses cookies to track users. That's the same behavior you will get with other sites as well such as gmail for example.
you can add hidden field with data for recognize each view.
you store all data in server side such as session,cache,Database and serve "unique" view
I hope you'll find an elegant solution to this problem, but AFAK one instance of browser simply shares one identity.
To deal with this situation we use HIDDEN on master page, that is a part of main form. Its value is randomly generated when first page loads. Later, the value is kept between requests. Session values are stored with HashTable key of hidden value.
2 more hacks needed to get it work.
Response.Redirect is done with simple form that uses POST method to pass HIDDEN value to the new page.
All hrefs clicked with left button also posting HIDDEN value (if user uses 'Open in new TAB/Window' direct redirect without post simply creates new HIDDEN value - new subsession.)
Related
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 3 years ago.
Improve this question
I would like to know how do i setup auto refresh facility on smart window which should get auto refresh whenever new records gets updated in db.
I could setup refresh button on browser and inside that call the program for retrieve. But the concern here is each and every minute new records gets updated to db so that i need to click the button if i want to see on the browser as its having only initial fetched record while opening.
So i am questioning here is that is open edge have the facility of real time update? i.e will window get automatic refresh once new records uploaded to the specific database table.
I am new and don't know how can I write a query for this. Please throw a lamp here to bright. It would be better.
Sorry if i am wrong.
There is no automatic, built-in auto refresh capability for OpenEdge.
Your idea of coding a refresh button is a good start. If you start with that, and get a manual refresh working to your satisfaction you can then focus on automating the button press.
There are a number of ways that you might choose to do that. The specifics are dependent on your platform and the application framework that you are using. You mention "smart window" so I am guessing you must be on Windows and using the really old and crusty stuff.
For that environment you probably just want to add a "pstimer" ActiveX. That's not really the modern way of going about things but it might be the best fit for the world that you actually live in.
There are many Progress kbase articles on how to do that. This might be a good start: https://knowledgebase.progress.com/articles/Article/19064
There are probably perfectly good .NET equivalents too. The key is to first code your "refresh button" so that the critical logic just needs to be triggered from time to time.
Closed. This question needs debugging details. It is not currently accepting answers.
Edit the question to include desired behavior, a specific problem or error, and the shortest code necessary to reproduce the problem. This will help others answer the question.
Closed 7 years ago.
Improve this question
I am supporting an old classic asp application which is built on VB6.The problem is when I click the submit for approval button in the below
The frame is getting repeated as below...
But when I click on any option of leftmost menulist(For ex: Leave and Attendance Management in the left most menu list) or when I refresh the whole page, The page is displayed finely as below.
As the code is in classic ASP I was unable to debug the code.I am attaching the .asp code of Leave application form page (i.e., the code of first screen shot ) below.
Due to lack of space I am giving you a shared link : Click here...
Code is bit big.Kindly help me.Thanks in advance
Based on your screenshots and the code it looks like the leave application form is being loaded within an iframe on the page of your first screenshot, so when you submit you are loading the posted page into the same iframe. The code (in your shared link) at line 50 seems to target one frame over another depending on a querystring. I would debug the parent page to ensure you have the correct name or target _top to ensure the posted page takes over the whole screen
My website is used to administer customer accounts. If I access CustomerA's account through the website then open a new tab and access CustomerB's account the session holding the customer ID updates to think I'm now working on CustomerB. Then if I click back to CustomerA's tab and start editing that page I am in fact editing the database record for CustomerB. This has happened and caused all sorts of problems so I need to find a fool proof way of stopping it. I don't want to put the customer ID in the URL as this will make it open to abuse.
Session is not a place to hold information like this exactly because of problems you're describing. You need to pass customer ID along with the page itself (either in hidden field or in url), so when you post back the form, it exactly knows what are you trying to do. Session won't protect you nor add any extra security. You need to determine if the user has correct permissions either way, so you should focus on this aspect.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 2 years ago.
Improve this question
I have a site where users can enter their profile and password-protect certain details. I would like search engines to crawl the 'unprotected' parts of the profile (which varies from user to user). Similar to how if you enter a user's name in facebook, their Facebook profile comes up in the search results. Do I have to do anything special to ensure that the bot doesn't crawl the password-protected sections, but still crawls the (always-public) username?
I'm not sure if this is even an issue, but I'd like to update my robots.txt to allow for this.
Also, how do I ensure that the usernames are available to the bots (in a safe manner)? Do I have to create a separate directory with a list of names, or is there a better way?
Thanks for any advice
The search engines will only index what an anonymous user sees. If you don't already, I would create a listing page to browse the user profiles in which you only show the data you want to. This ensures that a link exists for every userProfile.aspx?uid=XXXXXX you have. The search engine spiders will not be able to see any data that is behind a password protected.
I would also add a site map to ensure the search engine spiders get to the listing page. Don't assume that Google will magically find ALL of your pages though typically they do based on links to your content. Submit a site map to Google.
Edit regarding Site Maps and Search Results
In order for spiders to crawl search results, I would specify an entry in the site map that points spiders to the search results page that displays all (e.g. search.aspx?param=all).
You don't have to do anything. Search bots won't be able to access to your protected pages while they'll access without problems to the public content as long as you don't explicitly disallow it on robots.txt
This question already has answers here:
Closed 14 years ago.
Duplicate of Disable browser save password functionality
Is there a way to tell the browser not to insert pre-Saved credential data into forms on websites?
For example I might have an application where I have to login first. I saved the credentials for this login.
When I now want to create a new user account in the control panel, the browser automatically fills in the values for the name and password field, although I want to create a new user.
Is there a way to stop this from happening? Thanks for your answers.
Edit: I mean that the browser fills in the saved credentials when opening the site. I do not mean offering pre-filled in values for that form. But when I open the site the whole textfield and passwordfield are filled out with my data. I'm looking for a xhtml way of doing this, so it is programming related.
From this older post the 'autocomplete' attribute may be your friend:
Disable browser 'Save Password' functionality