From 3bef23e00ee79bd226251aef524406b8db82aac3 Mon Sep 17 00:00:00 2001
From: Sam Minnee <sam@silverstripe.com>
Date: Thu, 25 Sep 2008 01:13:44 +0000
Subject: [PATCH] ENHANCEMENT: Use get variable rather than session for
 Security::permissionFailure()'s BackURL, as it's more reliable

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/branches/2.2@63030 467b73ca-7a2a-4603-9d3b-597d59a354a9
---
 security/Security.php | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/security/Security.php b/security/Security.php
index 6f887c356..d819b394d 100644
--- a/security/Security.php
+++ b/security/Security.php
@@ -150,12 +150,10 @@ class Security extends Controller {
 		Session::set("Security.Message.message", $message);
 		Session::set("Security.Message.type", 'warning');
 
-		Session::set("BackURL", $_SERVER['REQUEST_URI']);
-		
 		if(Director::is_ajax()) {
 			die('NOTLOGGEDIN:');
 		} else {
-			Director::redirect("Security/login");
+			Director::redirect("Security/login?BackURL=" . urlencode($_SERVER['REQUEST_URI']));
 		}
 		return;
 	}