|
|||||||||
|
|||||||||
| |||||||||
|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
Dev Shed Forums Sponsor:
|
|
Application developers can seamlessly integrate the Advantage Database install with their application install. Learn the best practices used when setting up silent installs with this seminar. |
|
#1
February 27th, 2003, 02:24 PM
|
||||
|
||||
|
Login security problems....
Hi..
I`m building a site that needs login and then check that the user is logged in to visit several pages. The login-stuff is ok and I can do the check on the pages I want, but the problems is that after a user has logged out, he/she can still use the browsers "back-button" and display the contents on the previuos pages, but when reloading the pages my "not logged in" messages appears. Is there anything I can do to prevent the "backbutton" possibility? My logout-page has only a "session.abandon" function for the logout-procedure. Freddy....
|
|
#2
February 27th, 2003, 07:10 PM
|
|||
|
|||
|
I include this header file in each "secure" page I use
<% If Session("LoginID") = "" Then Response.redirect(Session("MyURL") & "/default.asp") End If Response.Expires = -1500 Response.CacheControl = "no-cache" %> If you are not logged in you get redirected to a "login" or "not authorized" page. If you use the back button you get a page can not be refreshed error msg. Does this help?
|
|
#3
February 28th, 2003, 01:35 AM
|
||||
|
||||
|
Thanks a lot.....you are the boss...!!
Freddy....
|
|
| Viewing: Dev Shed Forums > Programming Languages - More > ASP Programming > Login security problems.... |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
|
 |
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
