You did a correct analysis, I will react on your points below:
When I login & logout agaon the user name & password are still displayed on the login screen - I have now raised this as a bug.
Will be solved in 2.5.0-rc1
If I log out & overwrite the username & password & login as a new user then the default home page microflow is re-executed - but ONLY if the new user has a different user role to the previous user.
If I log out & log in again as a different user with the same user role as the previous user then the default home page microflow does not get re-executed.
This behaviour is due to the anonymous user feature we now provide in 2.5. This is a beta feature, so we're happy to receive your feedback!
We make a distinction between the 'normal' login page (login.html) and the inner login screen. If you navigate to index.html and anonymous users are enabled you will directly see the client. Once you click a button with a microflow for which you need more rights the inner login screen will be served. If logged in, you can continue in the same form (we do a reload of your security rights, but we don't trigger the startup microflow again because you want to stay on the same page).
If you hit 'logout' you will be redirected to the login screen. Which one depends on were you did come from. We save your origing (index.html or login.html) in the cookie. You can test this behaviour by removing the cookie from your browser en surfing to index.html or login.html, logon and logout.
If you use the login.html form the behaviour should be the same as in 2.4. So, you can solve your problem by using login.html. When you deploy your application on a server you should make sure to redirect the root url to login.html instead of index.html (if anonymous users are disabled).
We're still testing this behaviour. If you have any feedback or ideas to improve this behaviour, please let us know!
This sounds like a browser caching issue to me
What do you mean exactly by:
When I log out the login form is redisplayed with the user id & password still showing
? The only way in which you should see this is if your browser saved the username/password for you, otherwise you should always have a blank login form.
As for the Microflow not being executed, the way it works now is that it's the default home page, meaning that whenever you login (and thus didn't have a previous location that you wanted to surf to) you get redirected to the homepage, ie microflow. It was never meant as an "after login" action.