01-27-2022, 04:16 AM
(This post was last modified: 01-27-2022, 04:22 AM by Alexandre Machado.)
Is this a sync call?
I believe you can completely remove your ChangeResponseCodeFromOKToRedirect() call, can't you?
Short answer:
The TerminateAndRedirect process will set Code to 303 (which is more adequate than 302 and used in most parts of IW 15.2) and adds the header correctly.
Long complete answer:
TerminateAndRedirect has been reworked to be smarter and especially SAFER without user intervention.
Whenever you redirect to another root address (i.e. another site) a GET will always be used (so no sensitive data is ever POSTed to another site). POST redirect is only used when you are using the same root url (same IW application) and the data is needed (e.g. session info).
I believe you are pretty safe using TerminateAndRedirect() to another site
I believe you can completely remove your ChangeResponseCodeFromOKToRedirect() call, can't you?
Short answer:
The TerminateAndRedirect process will set Code to 303 (which is more adequate than 302 and used in most parts of IW 15.2) and adds the header correctly.
Long complete answer:
TerminateAndRedirect has been reworked to be smarter and especially SAFER without user intervention.
Whenever you redirect to another root address (i.e. another site) a GET will always be used (so no sensitive data is ever POSTed to another site). POST redirect is only used when you are using the same root url (same IW application) and the data is needed (e.g. session info).
I believe you are pretty safe using TerminateAndRedirect() to another site