On Tuesday, 19 March 2013 00:35:21 UTC+1, cricket wrote:
There's no need to allow people to hit your logout action
That's bad advice.
if they're not authenticated
Then they'll be prompted to login - to access the logout function.
Consider: user has been idle for an hour and clicks the logout button - what do you want to see as a user? I'm sure the answer is not: "you do not have permission to access that page - please login to continue".
AD
-- Like Us on FaceBook https://www.facebook.com/CakePHP
Find us on Twitter http://twitter.com/CakePHP
---
You received this message because you are subscribed to the Google Groups "CakePHP" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cake-php+unsubscribe@googlegroups.com.
To post to this group, send email to cake-php@googlegroups.com.
Visit this group at http://groups.google.com/group/cake-php?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.
No comments:
Post a Comment