Eduardo,<br>
<br>
isn't this THE usual problem with Web-Apps? :)<br>
<br>
You want to be sure that ONE PARTICULAR FORM only gets submitted once.<br>
<br>
So, make this form unique:<br>
<br>
add a HIDDEN input with a UNIQUE GUID (windows has a GUID in his API,
there are MILLIONS of receipts out there, a MD5 of the current
time.time() is quite fair)<br>
<br>
when logging Info to database, store this guid. If a form with the same guid is submitted, reject that information<br>
<br>
Add timeouts as appropriate (for example, each GUID is only valid for 0,5 hours)<br>
<br>
Harald<br>
<br><br><div><span class="gmail_quote">2005/7/15, Eduardo Biano <<a href="mailto:edbiano@rocketmail.com">edbiano@rocketmail.com</a>>:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Hi,<br><br>I am a Medusa and Quixote newbie, hacked the Quixote<br>demo and created a small app. The app authenticates<br>users, displays a form which users can fill and<br>submit using a Submit button. It updates a database
<br>and then displays the home page.<br><br>My problem is, when the home page is displayed and i<br>hit the browser Back button the same form is displayed<br>with all the information of the previous entry. And<br>when i hit the Submit button it again updates the
<br>database.<br><br>I would like to have the form page expired or any<br>other solution you can suggest so that users cannot<br>submit the form again without being authenticated. I<br>read about _q_access and session but i cannot figure
<br>out how to do it. I think the browser Back button<br>issue is different from the normal program flow.<br><br>Please give some hints and thank you in advance.<br><br>Cheers!<br>Ed<br><br><br><br>____________________________________________________
<br>Start your day with Yahoo! - make it your home page<br><a href="http://www.yahoo.com/r/hs">http://www.yahoo.com/r/hs</a><br><br>_______________________________________________<br>Medusa-dev mailing list<br><a href="mailto:Medusa-dev@python.org">
Medusa-dev@python.org</a><br><a href="http://mail.python.org/mailman/listinfo/medusa-dev">http://mail.python.org/mailman/listinfo/medusa-dev</a><br></blockquote></div><br><br><br>-- <br>GHUM Harald Massa<br>persuasion python postgresql
<br>Harald Armin Massa<br>Reinsburgstraße 202b<br>70197 Stuttgart<br>0173/9409607