Add a two fields to your user table: isLoggedIn and lastAccessDate.
Set the former to true when the user logs in, and update the latter
every request. When you get a login request for the user, only allow
it if isLoggedIn is false OR lastAccessDate is more than your session
timeout in the past (meaning the session is timed out, and theyre' not
logged in any more).
cheers,
barneyb
On Thu, 14 Oct 2004 12:32:09 -0700, Tim Do <[EMAIL PROTECTED]> wrote:
> How would I go about preventing multiple logins w/ the same username and
> password? I'm currently using client variables for this. I tried checking
> the data field in CDATA but not having any luck. If a user does not log out
> and just closes the window or the session is timed out, there is still a
> record in CFDATA w/ the user's username. How do other sites prevent this??
>
> Thanks
>
>
[Todays Threads]
[This Message]
[Subscription]
[Fast Unsubscribe]
[User Settings]
[Donations and Support]
- How to prevent multiple logins Tim Do
- Re: How to prevent multiple logins Barney Boisvert
- Re: How to prevent multiple logins Matt Robertson
- Re: How to prevent multiple logins Barney Boisvert
- Re: How to prevent multiple logins Micha Schopman
- Re: How to prevent multiple logins Barney Boisvert
- Re: How to prevent multiple logins Chris Johnston
- RE: How to prevent multiple logins Ewok
- RE: How to prevent multiple logins Burns, John D
- Rounding up dollar figures Jordan Michaels
- Re: Rounding up dollar figures Anders Green
- Re: Rounding up dollar figures Chris Johnston