Re: logout after authenticated
This WebDNA talk-list message is from 2002
It keeps the original formatting.
numero = 41808
interpreted = N
texte = I agree with the cookies.My site allows users to log in with a form.I then write and encrypted session cookie with the following:[lookup their UserID from passed form variables]*[mathshow=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep]On each protected page, I decrypt their cookie, get their UserID, and thenalso check to make sure they are at the same Ipaddress and the date iseither the same or minus 1. (incase they have a cookie set late at night andthey stay on past midnight.Once they close the browser, or click on log out (which replaces theircookie with blank values) no one can get back into the system with loggingback in.Brian-----Original Message-----From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On BehalfOf Dean SmithSent: Monday, July 22, 2002 3:47 PMTo: WebCatalog TalkSubject: Re: logout after authenticatedOne more thing, I trigger the popup with an onUnload javascript in thewindow whose closing I want to log the user out.Dean Smith> From: Dean Smith
> Reply-To: (WebCatalog Talk)> Date: Mon, 22 Jul 2002 11:33:09 -0800> To: (WebCatalog Talk)> Subject: Re: logout after authenticated>> I have used a window that quickly pops up and 1) kills the cookie, 2) logs> the user out, and 3) disappears. It is done with webDNA and a meta in the> popup.>> Dean Smith> The Padilla Group> www.thepadillagroup.com>>> From: Lester Emo >> Reply-To: (WebCatalog Talk)>> Date: Mon, 22 Jul 2002 13:19:42>> To: (WebCatalog Talk)>> Subject: Re: logout after authenticated>>>> Are you doing with with the plain and simple>> popup authenticate box that asks for Username / Password???>>>>>>>> At 01:15 PM 7/22/02, you wrote:>>> You could also use a cookie-based login/logout system. We've done this>>> successfully for a few clients. When users sign up, their info iscaptured>>> in a database with a unique ID number and we set a cookie. Eachmembers>>> page checks for the cookie and hides or displays informationaccordingly.>>> When the user logs out, the cookie is removed.>>>>>>>>> On 7/22/02 1:10 PM, Lester Emo wrote:>>>>>>> Just checking if anyone has implemented a way to allow a>>>> user to logoff after they have logged into a group of>>>> pages that are protected using [protect] and MultiGroupChecker.>>>>>>>> I'm not using anything terribly complicated.>>>> What I currently have is working fine.>>>>>>>> My main goal was to allow a user to view pages>>>> without having to embed info into links or creating>>>> carts to pass around in links etc . . .>>>>>>>> One thing that concerns me is a user leaving their>>>> browser open and anyone else then having access>>>> to the pages I'm protecting.>>>>>>>> After looking in the talk-list archives all weekend long it>>>> seems having a customized html page with user / pass etc>>>> is the only way to offer a logoff button.>>>>>>>>>>>> thanks>>>>>>>>> --------------------------------------------------------------------->>> Clint Davis>>> Webmaster / Interactive Media Specialist>>> Gray Loon Marketing Group, Inc. http://www.grayloon.com>>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999>>> --------------------------------------------------------------------->>>>>>>>> ------------------------------------------------------------->>> This message is sent to you because you are subscribed to>>> the mailing list .>>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to>>> >>> Web Archive of this list is at: http://search.smithmicro.com/>>>>>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to>> >> Web Archive of this list is at: http://search.smithmicro.com/>>>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://search.smithmicro.com/>-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail toWeb Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
I agree with the cookies.My site allows users to log in with a form.I then write and encrypted session cookie with the following:[lookup their UserID from passed form variables]*[mathshow=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep]On each protected page, I decrypt their cookie, get their UserID, and thenalso check to make sure they are at the same Ipaddress and the date iseither the same or minus 1. (incase they have a cookie set late at night andthey stay on past midnight.Once they close the browser, or click on log out (which replaces theircookie with blank values) no one can get back into the system with loggingback in.Brian-----Original Message-----From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On BehalfOf Dean SmithSent: Monday, July 22, 2002 3:47 PMTo: WebCatalog TalkSubject: Re: logout after authenticatedOne more thing, I trigger the popup with an onUnload javascript in thewindow whose closing I want to log the user out.Dean Smith> From: Dean Smith > Reply-To: (WebCatalog Talk)> Date: Mon, 22 Jul 2002 11:33:09 -0800> To: (WebCatalog Talk)> Subject: Re: logout after authenticated>> I have used a window that quickly pops up and 1) kills the cookie, 2) logs> the user out, and 3) disappears. It is done with webDNA and a meta in the> popup.>> Dean Smith> The Padilla Group> www.thepadillagroup.com>>> From: Lester Emo >> Reply-To: (WebCatalog Talk)>> Date: Mon, 22 Jul 2002 13:19:42>> To: (WebCatalog Talk)>> Subject: Re: logout after authenticated>>>> Are you doing with with the plain and simple>> popup authenticate box that asks for Username / Password???>>>>>>>> At 01:15 PM 7/22/02, you wrote:>>> You could also use a cookie-based login/logout system. We've done this>>> successfully for a few clients. When users sign up, their info iscaptured>>> in a database with a unique ID number and we set a cookie. Eachmembers>>> page checks for the cookie and hides or displays informationaccordingly.>>> When the user logs out, the cookie is removed.>>>>>>>>> On 7/22/02 1:10 PM, Lester Emo wrote:>>>>>>> Just checking if anyone has implemented a way to allow a>>>> user to logoff after they have logged into a group of>>>> pages that are protected using [protect] and MultiGroupChecker.>>>>>>>> I'm not using anything terribly complicated.>>>> What I currently have is working fine.>>>>>>>> My main goal was to allow a user to view pages>>>> without having to embed info into links or creating>>>> carts to pass around in links etc . . .>>>>>>>> One thing that concerns me is a user leaving their>>>> browser open and anyone else then having access>>>> to the pages I'm protecting.>>>>>>>> After looking in the talk-list archives all weekend long it>>>> seems having a customized html page with user / pass etc>>>> is the only way to offer a logoff button.>>>>>>>>>>>> thanks>>>>>>>>> --------------------------------------------------------------------->>> Clint Davis>>> Webmaster / Interactive Media Specialist>>> Gray Loon Marketing Group, Inc. http://www.grayloon.com>>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999>>> --------------------------------------------------------------------->>>>>>>>> ------------------------------------------------------------->>> This message is sent to you because you are subscribed to>>> the mailing list .>>> To unsubscribe, E-mail to: >>> To switch to the DIGEST mode, E-mail to>>> >>> Web Archive of this list is at: http://search.smithmicro.com/>>>>>> ------------------------------------------------------------->> This message is sent to you because you are subscribed to>> the mailing list .>> To unsubscribe, E-mail to: >> To switch to the DIGEST mode, E-mail to>> >> Web Archive of this list is at: http://search.smithmicro.com/>>>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://search.smithmicro.com/>-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail toWeb Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Brian Boegershausen
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
WebCat2b13MacPlugin - [math][date][/math] problem (1997)
creating a ShipCosts database (1997)
RE: Multiple Stores and WebCatalog Prefs (1997)
WebDNA 6.0 & MAC OS X Server 10.4.10 (2007)
I'm tired of all this! (2000)
Format of Required fields error message (1997)
Document Contains no data, or showcart error. (1997)
GuestBook example (1997)
New Command prefs ... (1997)
Multiple catalog databases and showcart (1997)
Problems with WebDNA-Talk list (1998)
Multi-processor Mac info ... (1997)
RE: Missing contexts on NT (1997)
[isfile] ? (1997)
Ship via options price (2000)
JS Question - Print (2007)
determining plug-ins? (1998)
WebCat2b13MacPlugIn - [include] (1997)
Sendmail (1997)
Attn: Bug in GeneralStore example b15 (1997)