User Name Password Register
DaniWeb IT Discussion Community
Home
Forums
Tutorials
Code Snippets
Blogs
Link Directory
All
What is DaniWeb IT Discussion Community?
You're currently browsing the Perl section within the Software Development category of DaniWeb, a massive community of 370,612 software developers, web developers, Internet marketers, and tech gurus who are all enthusiastic about making contacts, networking, and learning from each other. In fact, there are 2,064 IT professionals currently interacting right now! Registration is free, only takes a minute and lets you enjoy all of the interactive features of the site.
Join our community!
Please support our Perl advertiser:
Views: 2065 | Replies: 4
Reply
Join Date: Feb 2007
Posts: 6
Reputation: qualtran is an unknown quantity at this point 
Rep Power: 0
Solved Threads: 0
qualtran qualtran is offline Offline
Newbie Poster

Help Creating a Robust Logout System

  #1  
Feb 13th, 2007
When someone logs out of our site, I want the previous page to not be accessible (or any of the other pages.)

So far, when a user clicks the logout button on our site, I do the following:
1) I write to a file
2) erase the session cookie
3) disable the back button.

When each page loads on our site, it checks to make sure the login file has the correct variable, checks to see if the session cookie has a value. The session cookie is checked by javascript upon page loading, the login file is checked on the server.

Everything works but when someone hits the back button, there is enough of a delay where the page can still be viewed before the javascript redirects it.

Is there a better way to do this so that when someone clicks back, the information is no longer there at all?

Thanks!
AddThis Social Bookmark Button
Reply With Quote  
Join Date: Jul 2004
Location: North East Indiana
Posts: 491
Reputation: Puckdropper is an unknown quantity at this point 
Rep Power: 5
Solved Threads: 20
Puckdropper Puckdropper is offline Offline
Posting Pro in Training

Re: Creating a Robust Logout System

  #2  
Feb 14th, 2007
Don't break the back button. The back button can take you back past your own page to pages visited before, so breaking it annoys people.

You should probably do the cookie checking through Perl, not Javascript. That way, when your user hits the back button they either get a cached version of the page (they were authorized to view it in the first place), or they get a "You have been logged out" message. If you're really worried about cached pages like that, you can add a custom header that says the page expired sometime in the past. (1969 would be a good year.)
www.uncreativelabs.net

Old computers are getting to be a lost art. Here at Uncreative Labs, we still enjoy using the old computers. Sometimes we want to see how far a particular system can go, other times we use a stock system to remind ourselves of what we once had.
Reply With Quote  
Join Date: Feb 2007
Posts: 6
Reputation: qualtran is an unknown quantity at this point 
Rep Power: 0
Solved Threads: 0
qualtran qualtran is offline Offline
Newbie Poster

Re: Creating a Robust Logout System

  #3  
Feb 14th, 2007
Ok, getting "this page has expired" to come up whenever they try to go back to one of our pages is exactly what I want to do. Now how do I actually do it?
Reply With Quote  
Join Date: Jul 2004
Location: North East Indiana
Posts: 491
Reputation: Puckdropper is an unknown quantity at this point 
Rep Power: 5
Solved Threads: 20
Puckdropper Puckdropper is offline Offline
Posting Pro in Training

Re: Creating a Robust Logout System

  #4  
Feb 14th, 2007
Use the CGI module.

http://search.cpan.org/dist/CGI.pm/CGI.pm#HTTP_COOKIES

(For your convience, the link will show the HTTP cookies section first.)
www.uncreativelabs.net

Old computers are getting to be a lost art. Here at Uncreative Labs, we still enjoy using the old computers. Sometimes we want to see how far a particular system can go, other times we use a stock system to remind ourselves of what we once had.
Reply With Quote  
Join Date: Jun 2006
Location: UK (Bristol)
Posts: 225
Reputation: Mushy-pea is an unknown quantity at this point 
Rep Power: 3
Solved Threads: 1
Mushy-pea's Avatar
Mushy-pea Mushy-pea is offline Offline
Posting Whiz in Training

Re: Creating a Robust Logout System

  #5  
Feb 14th, 2007
Originally Posted by Puckdropper View Post
If you're really worried about cached pages like that, you can add a custom header that says the page expired sometime in the past. (1969 would be a good year.)

Just as a side note (seeing as you seem to have solved the OP's problem), setting an expiry date for things that is before Jan 1st 1970 may cause the integer representing that date at system level to wrap around and become something close to 2038.

See here: http://computer.howstuffworks.com/question75.htm

It usually best to use 00:00:01 Jan 1 1970 to make objects expire instantly. Just a helpful tip .

Steven.
Hello, you're through to Steven on the BT Business technical help desk. Could I take your broadband telephone number please?
Reply With Quote  
Reply

Only community members can participate in forum threads. You must register or log in to contribute.

Register
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

 

DaniWeb Perl Marketplace
Thread Tools Display Modes
Linear Mode Linear Mode

apple computer engine france google haskell internet leopard library linux microsoft open operating operating system os parliament perl search source switching system technology torvalds upgrade vista windows xp
Similar Threads
Other Threads in the Perl Forum

Advertising Opportunities on DaniWeb
Contact Us - Newsletter Archive - Sitemap - Privacy Statement
All times are GMT -4. The time now is 6:44 am.
Forum system based on vBulletin Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
©2003 - 2008 DaniWeb® LLC