Set the former to true when the user logs in, and update the latter
every request. When you get a login request for the user, only allow
it if isLoggedIn is false OR lastAccessDate is more than your session
timeout in the past (meaning the session is timed out, and theyre' not
logged in any more).
cheers,
barneyb
On Thu, 14 Oct 2004 12:32:09 -0700, Tim Do <[EMAIL PROTECTED]> wrote:
> How would I go about preventing multiple logins w/ the same username and
> password? I'm currently using client variables for this. I tried checking
> the data field in CDATA but not having any luck. If a user does not log out
> and just closes the window or the session is timed out, there is still a
> record in CFDATA w/ the user's username. How do other sites prevent this??
>
> Thanks
>
>
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
