RE: Expriing a session
> I am having no luck expiring a users session. Here is what I > am attemnpting: User logs in.. All is fine, a session variable > is set to "loggedin". When the user clicks "log out" I call a > template that sets the value of the session var to "loggedout" > and then redirect them to a new page. The problem is that if > they hit the browsers back button they can still get to the page > they were viewing when they logged on. I have tried using > cflocation to send them to the enw page and I even check for the > value of the sesison var before displaying the page that is > protected via the login... Perhaps the browser is pulling the page from its cache. If this is a concern, you can add the appropriate HTTP headers and/or META tags to avoid caching. For example: (pulled from an email I got from another developer here at Fig Leaf) Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 ~~ Your ad could be here. Monies from ads go to support these lists and provide more resources for the community. http://www.fusionauthority.com/ads.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: Expriing a session
Use a struct delete. where session is the name of the entire session group. or you can do it with an induvidual variable like this HTH Kevin ~ Kevin Mansel Senior Web Developer Fox Communications [EMAIL PROTECTED] DL : 425-649-1321 C : 425-346-7221 -Original Message- From: Tangorre, Michael T. [mailto:[EMAIL PROTECTED]] Sent: Monday, December 03, 2001 10:03 AM To: CF-Talk Subject: Expriing a session Hi everyone. I am having no luck expiring a users session. Here is what I am attemnpting: User logs in.. All is fine, a session variable is set to "loggedin". When the user clicks "log out" I call a template that sets the value of the session var to "loggedout" and then redirect them to a new page. The problem is that if they hit the browsers back button they can still get to the page they were viewing when they logged on. I have tried using cflocation to send them to the enw page and I even check for the value of the sesison var before displaying the page that is protected via the login... Any ideas? Michael T. Tangorre Resident Assistant - Brick Web Applications Developer A.U. Webteam Slave :-) AIM: CrazyFlash4 ~~ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
RE: Expriing a session (Solution)
Here are the two things you can do to clear a session and clear a session when the browser closes. 1. StructClear(session); This will clear the users session. 2. right after the code you use to start the application you should put the below code... Nathan Stanford www.cftipsplus.com -Original Message- From: Tangorre, Michael T. [mailto:[EMAIL PROTECTED]] Sent: Monday, December 03, 2001 12:03 PM To: CF-Talk Subject: Expriing a session Hi everyone. I am having no luck expiring a users session. Here is what I am attemnpting: User logs in.. All is fine, a session variable is set to "loggedin". When the user clicks "log out" I call a template that sets the value of the session var to "loggedout" and then redirect them to a new page. The problem is that if they hit the browsers back button they can still get to the page they were viewing when they logged on. I have tried using cflocation to send them to the enw page and I even check for the value of the sesison var before displaying the page that is protected via the login... Any ideas? Michael T. Tangorre Resident Assistant - Brick Web Applications Developer A.U. Webteam Slave :-) AIM: CrazyFlash4 ~~ Get the mailserver that powers this list at http://www.coolfusion.com FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
Expriing a session
Hi everyone. I am having no luck expiring a users session. Here is what I am attemnpting: User logs in.. All is fine, a session variable is set to "loggedin". When the user clicks "log out" I call a template that sets the value of the session var to "loggedout" and then redirect them to a new page. The problem is that if they hit the browsers back button they can still get to the page they were viewing when they logged on. I have tried using cflocation to send them to the enw page and I even check for the value of the sesison var before displaying the page that is protected via the login... Any ideas? Michael T. Tangorre Resident Assistant - Brick Web Applications Developer A.U. Webteam Slave :-) AIM: CrazyFlash4 ~~ Get the mailserver that powers this list at http://www.coolfusion.com FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
