Forum Discussion
David_E__Smith
Jul 07, 2015Nimbostratus
That's certainly surprising. Since username and password are form variables that can be changed (if you mistype your password, for instance), I'd certainly expect to be able to change other inputs too. But if I can't, so be it...
Thoughts/comments on something like this as a workaround? This is intended to terminate the existing session, then bounce the user back to whatever page they originally requested (which should implicitly start a new session).
when ACL_ACCESS_DENIED {
ACCESS::session remove
HTTP::redirect [HTTP::uri]
}