Re: logout after authenticated

This WebDNA talk-list message is from

2002


It keeps the original formatting.
numero = 41813
interpreted = N
texte = Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote: >I agree with the cookies. >My site allows users to log in with a form. >I then write and encrypted session cookie with the following: >[lookup their UserID from passed form variables]*[math >show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep] >On each protected page, I decrypt their cookie, get their UserID, and then >also check to make sure they are at the same Ipaddress and the date is >either the same or minus 1. (incase they have a cookie set late at night and >they stay on past midnight. > >Once they close the browser, or click on log out (which replaces their >cookie with blank values) no one can get back into the system with logging >back in. > >Brian > >-----Original Message----- >From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf >Of Dean Smith >Sent: Monday, July 22, 2002 3:47 PM >To: WebCatalog Talk >Subject: Re: logout after authenticated > > >One more thing, I trigger the popup with an onUnload javascript in the >window whose closing I want to log the user out. > >Dean Smith > > > From: Dean Smith > > Reply-To: (WebCatalog Talk) > > Date: Mon, 22 Jul 2002 11:33:09 -0800 > > To: (WebCatalog Talk) > > Subject: Re: logout after authenticated > > > > I have used a window that quickly pops up and 1) kills the cookie, 2) logs > > the user out, and 3) disappears. It is done with webDNA and a meta in the > > popup. > > > > Dean Smith > > The Padilla Group > > www.thepadillagroup.com > > > >> From: Lester Emo > >> Reply-To: (WebCatalog Talk) > >> Date: Mon, 22 Jul 2002 13:19:42 > >> To: (WebCatalog Talk) > >> Subject: Re: logout after authenticated > >> > >> Are you doing with with the plain and simple > >> popup authenticate box that asks for Username / Password??? > >> > >> > >> > >> At 01:15 PM 7/22/02, you wrote: > >>> You could also use a cookie-based login/logout system. We've done this > >>> successfully for a few clients. When users sign up, their info is >captured > >>> in a database with a unique ID number and we set a cookie. Each >members > >>> page checks for the cookie and hides or displays information >accordingly. > >>> When the user logs out, the cookie is removed. > >>> > >>> > >>> On 7/22/02 1:10 PM, Lester Emo wrote: > >>> > >>>> Just checking if anyone has implemented a way to allow a > >>>> user to logoff after they have logged into a group of > >>>> pages that are protected using [protect] and MultiGroupChecker. > >>>> > >>>> I'm not using anything terribly complicated. > >>>> What I currently have is working fine. > >>>> > >>>> My main goal was to allow a user to view pages > >>>> without having to embed info into links or creating > >>>> carts to pass around in links etc . . . > >>>> > >>>> One thing that concerns me is a user leaving their > >>>> browser open and anyone else then having access > >>>> to the pages I'm protecting. > >>>> > >>>> After looking in the talk-list archives all weekend long it > >>>> seems having a customized html page with user / pass etc > >>>> is the only way to offer a logoff button. > >>>> > >>>> > >>>> thanks > >>> > >>> > >>> --------------------------------------------------------------------- > >>> Clint Davis > >>> Webmaster / Interactive Media Specialist > >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com > >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999 > >>> --------------------------------------------------------------------- > >>> > >>> > >>> ------------------------------------------------------------- > >>> This message is sent to you because you are subscribed to > >>> the mailing list . > >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to > >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/ > >> > >> > >> ------------------------------------------------------------- > >> This message is sent to you because you are subscribed to > >> the mailing list . > >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to > >> > >> Web Archive of this list is at: http://search.smithmicro.com/ > >> > > > > > > ------------------------------------------------------------- > > This message is sent to you because you are subscribed to > > the mailing list . > > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > > > Web Archive of this list is at: http://search.smithmicro.com/ > > > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: logout after authenticated (Lester Emo 2002)
  2. Re: logout after authenticated (Dean Smith 2002)
  3. Re: logout after authenticated (Dean Smith 2002)
  4. Re: logout after authenticated (Brian Boegershausen 2002)
  5. Re: logout after authenticated (Lester Emo 2002)
  6. Re: logout after authenticated (Clint Davis 2002)
  7. logout after authenticated (Lester Emo 2002)
Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote: >I agree with the cookies. >My site allows users to log in with a form. >I then write and encrypted session cookie with the following: >[lookup their UserID from passed form variables]*[math >show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep] >On each protected page, I decrypt their cookie, get their UserID, and then >also check to make sure they are at the same Ipaddress and the date is >either the same or minus 1. (incase they have a cookie set late at night and >they stay on past midnight. > >Once they close the browser, or click on log out (which replaces their >cookie with blank values) no one can get back into the system with logging >back in. > >Brian > >-----Original Message----- >From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf >Of Dean Smith >Sent: Monday, July 22, 2002 3:47 PM >To: WebCatalog Talk >Subject: Re: logout after authenticated > > >One more thing, I trigger the popup with an onUnload javascript in the >window whose closing I want to log the user out. > >Dean Smith > > > From: Dean Smith > > Reply-To: (WebCatalog Talk) > > Date: Mon, 22 Jul 2002 11:33:09 -0800 > > To: (WebCatalog Talk) > > Subject: Re: logout after authenticated > > > > I have used a window that quickly pops up and 1) kills the cookie, 2) logs > > the user out, and 3) disappears. It is done with webDNA and a meta in the > > popup. > > > > Dean Smith > > The Padilla Group > > www.thepadillagroup.com > > > >> From: Lester Emo > >> Reply-To: (WebCatalog Talk) > >> Date: Mon, 22 Jul 2002 13:19:42 > >> To: (WebCatalog Talk) > >> Subject: Re: logout after authenticated > >> > >> Are you doing with with the plain and simple > >> popup authenticate box that asks for Username / Password??? > >> > >> > >> > >> At 01:15 PM 7/22/02, you wrote: > >>> You could also use a cookie-based login/logout system. We've done this > >>> successfully for a few clients. When users sign up, their info is >captured > >>> in a database with a unique ID number and we set a cookie. Each >members > >>> page checks for the cookie and hides or displays information >accordingly. > >>> When the user logs out, the cookie is removed. > >>> > >>> > >>> On 7/22/02 1:10 PM, Lester Emo wrote: > >>> > >>>> Just checking if anyone has implemented a way to allow a > >>>> user to logoff after they have logged into a group of > >>>> pages that are protected using [protect] and MultiGroupChecker. > >>>> > >>>> I'm not using anything terribly complicated. > >>>> What I currently have is working fine. > >>>> > >>>> My main goal was to allow a user to view pages > >>>> without having to embed info into links or creating > >>>> carts to pass around in links etc . . . > >>>> > >>>> One thing that concerns me is a user leaving their > >>>> browser open and anyone else then having access > >>>> to the pages I'm protecting. > >>>> > >>>> After looking in the talk-list archives all weekend long it > >>>> seems having a customized html page with user / pass etc > >>>> is the only way to offer a logoff button. > >>>> > >>>> > >>>> thanks > >>> > >>> > >>> --------------------------------------------------------------------- > >>> Clint Davis > >>> Webmaster / Interactive Media Specialist > >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com > >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999 > >>> --------------------------------------------------------------------- > >>> > >>> > >>> ------------------------------------------------------------- > >>> This message is sent to you because you are subscribed to > >>> the mailing list . > >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to > >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/ > >> > >> > >> ------------------------------------------------------------- > >> This message is sent to you because you are subscribed to > >> the mailing list . > >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to > >> > >> Web Archive of this list is at: http://search.smithmicro.com/ > >> > > > > > > ------------------------------------------------------------- > > This message is sent to you because you are subscribed to > > the mailing list . > > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > > > Web Archive of this list is at: http://search.smithmicro.com/ > > > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Lester Emo

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Re:no [search] with NT (1997) [format] problem (2001) Re:quit command on NT (1997) ConvertChars (2000) RE: [WebDNA] Advice needed (2013) 404 error -- but wc code executes... (2001) Keep away (1997) Re:Dumb Question about Docs (1997) Search in 2 or more catalogs (1997) Multiple Ad databases? (1997) %@#*& back button!!! (1999) Using EIMS instead of Emailer (1998) Changing SubTotal (2003) Problems searching from a FORM (1997) SendMail context not working on CentOS 4 (2007) [OT] Mac OSX hardware test software (2004) Add htmlarea 3 to SiteBuilder (2004) RE:DatabaseHelper (1997) Hiding Contexts (2000) UPDATE PROBLEM (1997)