Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-02 Thread Eric Cholet
--On Thursday, August 01, 2002 15:08:40 -0400 Baljit Sethi [EMAIL PROTECTED] wrote: Hello. I am hoping someone can point me in the right direction. What I want to do is limit client logons to one logon per username ie while a client has a session open, he/she cannot logon to the website

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-02 Thread Perrin Harkins
Eric Cholet wrote: Someone recently suggested to me the following solution, based on slightly modified sessions. It involves sending a cookie that contains a new ID with each response. The server stores that ID keyed on the user's login name. The next request from the client is expected to

[Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread Baljit Sethi
Title: [Newbie Q] Cleanest way to implement one logon per user? Hello. I am hoping someone can point me in the right direction. What I want to do is limit client logons to one logon per username ie while a client has a session open, he/she cannot logon to the website from another

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread Perrin Harkins
Baljit Sethi wrote: What I want to do is limit client logons to one logon per username ie while a client has a session open, he/she cannot logon to the website from another terminal. The simplest thing to do is create a new session for the user each time he logs in and invalidate any old

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread jjore
PROTECTED]' [EMAIL PROTECTED] cc: Subject:[Newbie Q] Cleanest way to implement one logon per user? Hello. I am hoping someone can point me in the right direction. What I want to do is limit client logons to one logon per username ie while a client has a session open, he/she

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread Robert Landrum
On Thu, Aug 01, 2002 at 03:08:40PM -0400, Baljit Sethi wrote: Hello. I am hoping someone can point me in the right direction. What I want to do is limit client logons to one logon per username ie while a client has a session open, he/she cannot logon to the website from another

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread wsheldah
write on each request though, to keep the last activity time up to date. Wes Robert Landrum [EMAIL PROTECTED] on 08/01/2002 03:28:05 PM To: '[EMAIL PROTECTED]' [EMAIL PROTECTED] cc:(bcc: Wesley Sheldahl/Lex/Lexmark) Subject: Re: [Newbie Q] Cleanest way to implement one logon per user

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread jjore
- '15 minutes'::interval AND s.SessionDigest != ''::text; Robert Landrum [EMAIL PROTECTED] 08/01/2002 02:28 PM To: '[EMAIL PROTECTED]' [EMAIL PROTECTED] cc: Subject:Re: [Newbie Q] Cleanest way to implement one logon per user? On Thu, Aug 01

Re: [Newbie Q] Cleanest way to implement one logon per user?

2002-08-01 Thread Tim Tompkins
... It does cost an extra database write on each request though, to keep the last activity time up to date. Unless you maintain a timestamp in the cookie and hash it with the session id (or whatever sensitive info you're hashing). Regards, Tim Tompkins