Re: [symfony-users] Re: Making sure a login id only has one session at any moment

Thu, 28 Jan 2010 07:59:30 -0800 

Dear Tom,
Just like facebook, if I login in a public computer but forgot to logout, later when I am home and then login, the old session (may not have expired yet) should be killed. It seems more secure. 


----- Original Message ----- 
From: "Tom Ptacnik" <to...@tomor.cz>

To: "symfony users" <symfony-users@googlegroups.com>
Sent: Thursday, January 28, 2010 9:57 PM

Subject: [symfony-users] Re: Making sure a login id only has one session at 
any moment



Why do you want to kill his old session?


On 28 led, 04:21, "yth" <digital_...@yahoo.com.hk> wrote:

Dear all,

When a user logins, the controller calls the following function in the
myUser.class. The problem is, if he doesn't logout but then logins in
another computer/browser, the old session does not get killed. I tried to

use setAuthenticated(false) on users who have already authenticated, 
hoping

that his old session will get killed before he gets a new one. But it
doesn't work.

Many thanks to you all.

// Viewable inhttp://pastebin.com/f765fff66

public function login($loginId,$pwd){

$member=MemberPeer::getByLoginIdAndPassword($loginId,$pwd);

if(!is_null($member)) {

if($this->isAuthenticated())
$this->setAuthenticated(false); // I would like to
logout the user if he/she already has a session, but it doesn't work

$this->setAuthenticated(true);
$member->setLastLoginAt(time());
$member->save();
$this->setAttribute('member_id', $member->getMemberId());

return true;
}
return false;



}


--

You received this message because you are subscribed to the Google Groups 
"symfony users" group.

To post to this group, send email to symfony-us...@googlegroups.com.

To unsubscribe from this group, send email to 
symfony-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/symfony-users?hl=en.



__________ NOD32 4813 (20100128) Information __________

This message was checked by NOD32 antivirus system.
http://www.eset.com

--
You received this message because you are subscribed to the Google Groups "symfony 
users" group.
To post to this group, send email to symfony-us...@googlegroups.com.
To unsubscribe from this group, send email to 
symfony-users+unsubscr...@googlegroups.com.
For more options, visit this group at 
http://groups.google.com/group/symfony-users?hl=en.























					Reply via email to