ICEfaces
  1. ICEfaces
  2. ICE-3871

OutputResource link shows xml page when session is expired

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 1.7.2 SP1
    • Fix Version/s: 1.8RC1, 1.8
    • Component/s: ICE-Components
    • Labels:
      None
    • Environment:
      All

      Description

      When the session expires on a screen with an OutputResource link, clicking that link will you to an xml page that has only a <session-expired/> tag.
      The desired behavior should be to give the regular session expired popup or atleast a more user friendly message.

        Activity

        Hide
        Tyler Johnson added a comment -

        OutputResource test case

        Show
        Tyler Johnson added a comment - OutputResource test case
        Hide
        Ken Fyten added a comment -

        Framework should return a human-readable session expired message.

        Show
        Ken Fyten added a comment - Framework should return a human-readable session expired message.
        Hide
        Mircea Toma added a comment -

        Rendering "User Session Expired" is not possible since a resource does not have an associated running bridge.
        Also, if plain text message is rendered, message that explains why the resource is not served up it will eventually have to be localized and styled.

        So to avoid previously mentioned complexities SessionVerifier.class was modified to also send normal HTTP error responses for coresponding resource requests. This gives the application developer the opportunity to capture SessionExpiredException using container's error handling mechanism and render a customized message.

        Show
        Mircea Toma added a comment - Rendering "User Session Expired" is not possible since a resource does not have an associated running bridge. Also, if plain text message is rendered, message that explains why the resource is not served up it will eventually have to be localized and styled. So to avoid previously mentioned complexities SessionVerifier.class was modified to also send normal HTTP error responses for coresponding resource requests. This gives the application developer the opportunity to capture SessionExpiredException using container's error handling mechanism and render a customized message.
        Hide
        Keith Garry Boyce added a comment -

        There was another issue i saw with this.. continual interaction with output resource window.. i.e refreshing.. does not keep session alive hence leading to session expired on page which you clicked on openResource link

        Show
        Keith Garry Boyce added a comment - There was another issue i saw with this.. continual interaction with output resource window.. i.e refreshing.. does not keep session alive hence leading to session expired on page which you clicked on openResource link

          People

          • Assignee:
            Unassigned
            Reporter:
            Tyler Johnson
          • Votes:
            1 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: