git.evergreen-ils.org Git - Evergreen.git/commit - Open-ILS/src/perlmods/lib/OpenILS/WWW/EGCatLoader.pm

author	Bill Erickson <berick@esilibrary.com>
	Mon, 14 Nov 2011 21:27:05 +0000 (16:27 -0500)
committer	Mike Rylander <mrylander@gmail.com>
	Tue, 15 Nov 2011 16:38:08 +0000 (11:38 -0500)
commit	7d4598a3874536c365934f6f3e9745636415d642
tree	a3728cfbff3cb37d98890fb9549a11b3426da8c8	tree
parent	8f2a17b6fa2978a867ba7178b0fbc196a968fd7b	commit \| diff

tpac; improve ssl and authentication redirection

Create a better separation between pages the require SSL and those
that also require authentication.  This change has a number of
beneficial side effects:

1. If a user is already logged in and is somehow redirected to the
non-SSL version of a page requiring SSL (via, for example, some external
link), they are simply taken to the SSL equivlent of the page first.  If
they are found to be logged in, we're done.  If not, they are directed to
the login page like usual.

2. password_reset page now requires SSL (but not auth, obviously)

3. Removed the unnecessary warning about logging out on a non-SSL
connection.  We now redirect the user to the SSL version of logout so,
if they are in fact logged in, they can be successfully logged out.

Signed-off-by: Bill Erickson <berick@esilibrary.com>
Signed-off-by: Mike Rylander <mrylander@gmail.com>