[Koha-bugs] [Bug 7067] allow patron self registration via the opac
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Sep 11 18:28:56 CEST 2012
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7067
--- Comment #72 from Kyle M Hall <kyle at bywatersolutions.com> ---
(In reply to comment #70)
> If you submit a new registration via the OPAC and then reload the
> confirmation page (whether you're asked for email confirmation or not), you
> get duplicate patron records. The patron who required email confirmation
> gets duplicate fully-valid activation links. The patron who didn't require
> email confirmation gets newly-generated passwords on each reload but it
> doesn't appear that reloaded ones are valid.
With email registration on, I'm not getting duplicate patrons. I just get the
"Registration Complete" page with an empty username and password if I reload
the page. That is safe, but it would be better to redirect to an 'invalid
token' page instead.
When not requiring email verification, I *do* get duplicate borrowers. I'm not
sure if this situation has a solution. It's no different than the user hitting
back and submitting the same data again. We could redirect to a new page,
rather than loading the Registration Complete page directly from
opac-memberentry.pl, but that just shifts the problem. Instead of reloading
creating a duplicate patron, hitting back will.
If anyone has any suggestions, please let me know. But as far as I can tell
this is more of a HTTP problem than a Koha problem.
--
You are receiving this mail because:
You are the QA Contact for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list