On Wed, 9 Jan 2002 09:15:28 -0500, Mark Stewart <[EMAIL PROTECTED]> wrote:
>If I understand you correctly, once a user has logged in, you don't want >them to click on the IE icon or Nutscrape and go to your site and log in >again? If this is right, just capture their IP on login. When the next >user logs in, make sure that the IP's aren't the same. In general I find that IP's are fairly worthless with anything having to do with login's unless you are in a controlled intranet. And even then... Basically the simpliest thing to do is simply use a mutex on the user's database record. That is, a lock, or a numeric field say called "lock" with a default of 0. When someone logs in you +1 the record. When they log out you -1 the record. Don't allow any more login's when lock is >0. Put a timedate field for lock expiration in to allow "incidnets" to resolves themselves after a peroid of time so the admin isn't hassled to reset the lock. --min ______________________________________________________________________ Why Share? Dedicated Win 2000 Server · PIII 800 / 256 MB RAM / 40 GB HD / 20 GB MO/XFER Instant Activation · $99/Month · Free Setup http://www.pennyhost.com/redirect.cfm?adcode=coldfusionc FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists