well, what exactly was the problem. did you change 'username' and 'password' to your session name for those. also i didn't think about this before but when the session is destroyed the page has to be refreshed before the logout will be successful. maybe after the session is destroyed, have the page refresh


this should work. it did for me

First, do not disable my back button. It's 2nd on my list of most hated website activities. (1st is opening new browser windows.)

Ok, now to try to understand what you're trying to do: If you want to prevent a user who logged out from seeing the information on a previous user's welcome.php page, your best bet is to tell the browser the page is out of date and needs refreshed. That way, the browser won't load the page from cache and instead load the page from the server.

I think using a "META" tag with the option "expires" (Search for "META expires" and see what comes up) is the way to go here.

thanks kkeith u help me lot.I note two different thing about (gmail yahoomail)that gemail has disable back brouser as i have done in my code.But as i tould that on yahoo when we login our mail box get openand,and when we click on back button, then it comes on login page but on click forward button it will ask for login id password again for opening our mail box,here i was wrong bcoz, in yahoo when I login my mail box get open,and we click on back button, then it comes on login page and on click forward button again it will go to mail box.
So I thing what I want that is not posibal but still i will try to find some option.anyways thank you again.

i was just thinking about it and i thought you might be able to use page views as an option.
use a session variable to hold the number and when someone visits a page the count increases. if the count goes above 2 then logout will happen. i have never tested this so i have no idea if it works, but i think it might.