Re: logout after authenticated
This WebDNA talk-list message is from 2002
It keeps the original formatting.
numero = 41813
interpreted = N
texte = Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote:>I agree with the cookies.>My site allows users to log in with a form.>I then write and encrypted session cookie with the following:>[lookup their UserID from passed form variables]*[math>show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep]>On each protected page, I decrypt their cookie, get their UserID, and then>also check to make sure they are at the same Ipaddress and the date is>either the same or minus 1. (incase they have a cookie set late at night and>they stay on past midnight.>>Once they close the browser, or click on log out (which replaces their>cookie with blank values) no one can get back into the system with logging>back in.>>Brian>>-----Original Message----->From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf>Of Dean Smith>Sent: Monday, July 22, 2002 3:47 PM>To: WebCatalog Talk>Subject: Re: logout after authenticated>>>One more thing, I trigger the popup with an onUnload javascript in the>window whose closing I want to log the user out.>>Dean Smith>> > From: Dean Smith
> > Reply-To: (WebCatalog Talk)> > Date: Mon, 22 Jul 2002 11:33:09 -0800> > To: (WebCatalog Talk)> > Subject: Re: logout after authenticated> >> > I have used a window that quickly pops up and 1) kills the cookie, 2) logs> > the user out, and 3) disappears. It is done with webDNA and a meta in the> > popup.> >> > Dean Smith> > The Padilla Group> > www.thepadillagroup.com> >> >> From: Lester Emo > >> Reply-To: (WebCatalog Talk)> >> Date: Mon, 22 Jul 2002 13:19:42> >> To: (WebCatalog Talk)> >> Subject: Re: logout after authenticated> >>> >> Are you doing with with the plain and simple> >> popup authenticate box that asks for Username / Password???> >>> >>> >>> >> At 01:15 PM 7/22/02, you wrote:> >>> You could also use a cookie-based login/logout system. We've done this> >>> successfully for a few clients. When users sign up, their info is>captured> >>> in a database with a unique ID number and we set a cookie. Each>members> >>> page checks for the cookie and hides or displays information>accordingly.> >>> When the user logs out, the cookie is removed.> >>>> >>>> >>> On 7/22/02 1:10 PM, Lester Emo wrote:> >>>> >>>> Just checking if anyone has implemented a way to allow a> >>>> user to logoff after they have logged into a group of> >>>> pages that are protected using [protect] and MultiGroupChecker.> >>>>> >>>> I'm not using anything terribly complicated.> >>>> What I currently have is working fine.> >>>>> >>>> My main goal was to allow a user to view pages> >>>> without having to embed info into links or creating> >>>> carts to pass around in links etc . . .> >>>>> >>>> One thing that concerns me is a user leaving their> >>>> browser open and anyone else then having access> >>>> to the pages I'm protecting.> >>>>> >>>> After looking in the talk-list archives all weekend long it> >>>> seems having a customized html page with user / pass etc> >>>> is the only way to offer a logoff button.> >>>>> >>>>> >>>> thanks> >>>> >>>> >>> ---------------------------------------------------------------------> >>> Clint Davis> >>> Webmaster / Interactive Media Specialist> >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com> >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999> >>> ---------------------------------------------------------------------> >>>> >>>> >>> -------------------------------------------------------------> >>> This message is sent to you because you are subscribed to> >>> the mailing list .> >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to> >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/> >>> >>> >> -------------------------------------------------------------> >> This message is sent to you because you are subscribed to> >> the mailing list .> >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to> >> > >> Web Archive of this list is at: http://search.smithmicro.com/> >>> >> >> > -------------------------------------------------------------> > This message is sent to you because you are subscribed to> > the mailing list .> > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to> > > > Web Archive of this list is at: http://search.smithmicro.com/> >>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to>>Web Archive of this list is at: http://search.smithmicro.com/>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >>Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote:>I agree with the cookies.>My site allows users to log in with a form.>I then write and encrypted session cookie with the following:>[lookup their UserID from passed form variables]*[math>show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep]>On each protected page, I decrypt their cookie, get their UserID, and then>also check to make sure they are at the same Ipaddress and the date is>either the same or minus 1. (incase they have a cookie set late at night and>they stay on past midnight.>>Once they close the browser, or click on log out (which replaces their>cookie with blank values) no one can get back into the system with logging>back in.>>Brian>>-----Original Message----->From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf>Of Dean Smith>Sent: Monday, July 22, 2002 3:47 PM>To: WebCatalog Talk>Subject: Re: logout after authenticated>>>One more thing, I trigger the popup with an onUnload javascript in the>window whose closing I want to log the user out.>>Dean Smith>> > From: Dean Smith > > Reply-To: (WebCatalog Talk)> > Date: Mon, 22 Jul 2002 11:33:09 -0800> > To: (WebCatalog Talk)> > Subject: Re: logout after authenticated> >> > I have used a window that quickly pops up and 1) kills the cookie, 2) logs> > the user out, and 3) disappears. It is done with webDNA and a meta in the> > popup.> >> > Dean Smith> > The Padilla Group> > www.thepadillagroup.com> >> >> From: Lester Emo > >> Reply-To: (WebCatalog Talk)> >> Date: Mon, 22 Jul 2002 13:19:42> >> To: (WebCatalog Talk)> >> Subject: Re: logout after authenticated> >>> >> Are you doing with with the plain and simple> >> popup authenticate box that asks for Username / Password???> >>> >>> >>> >> At 01:15 PM 7/22/02, you wrote:> >>> You could also use a cookie-based login/logout system. We've done this> >>> successfully for a few clients. When users sign up, their info is>captured> >>> in a database with a unique ID number and we set a cookie. Each>members> >>> page checks for the cookie and hides or displays information>accordingly.> >>> When the user logs out, the cookie is removed.> >>>> >>>> >>> On 7/22/02 1:10 PM, Lester Emo wrote:> >>>> >>>> Just checking if anyone has implemented a way to allow a> >>>> user to logoff after they have logged into a group of> >>>> pages that are protected using [protect] and MultiGroupChecker.> >>>>> >>>> I'm not using anything terribly complicated.> >>>> What I currently have is working fine.> >>>>> >>>> My main goal was to allow a user to view pages> >>>> without having to embed info into links or creating> >>>> carts to pass around in links etc . . .> >>>>> >>>> One thing that concerns me is a user leaving their> >>>> browser open and anyone else then having access> >>>> to the pages I'm protecting.> >>>>> >>>> After looking in the talk-list archives all weekend long it> >>>> seems having a customized html page with user / pass etc> >>>> is the only way to offer a logoff button.> >>>>> >>>>> >>>> thanks> >>>> >>>> >>> ---------------------------------------------------------------------> >>> Clint Davis> >>> Webmaster / Interactive Media Specialist> >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com> >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999> >>> ---------------------------------------------------------------------> >>>> >>>> >>> -------------------------------------------------------------> >>> This message is sent to you because you are subscribed to> >>> the mailing list .> >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to> >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/> >>> >>> >> -------------------------------------------------------------> >> This message is sent to you because you are subscribed to> >> the mailing list .> >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to> >> > >> Web Archive of this list is at: http://search.smithmicro.com/> >>> >> >> > -------------------------------------------------------------> > This message is sent to you because you are subscribed to> > the mailing list .> > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to> > > > Web Archive of this list is at: http://search.smithmicro.com/> >>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to>>Web Archive of this list is at: http://search.smithmicro.com/>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >>Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Lester Emo
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Re:no [search] with NT (1997)
[format] problem (2001)
Re:quit command on NT (1997)
ConvertChars (2000)
RE: [WebDNA] Advice needed (2013)
404 error -- but wc code executes... (2001)
Keep away (1997)
Re:Dumb Question about Docs (1997)
Search in 2 or more catalogs (1997)
Multiple Ad databases? (1997)
%@#*& back button!!! (1999)
Using EIMS instead of Emailer (1998)
Changing SubTotal (2003)
Problems searching from a FORM (1997)
SendMail context not working on CentOS 4 (2007)
[OT] Mac OSX hardware test software (2004)
Add htmlarea 3 to SiteBuilder (2004)
RE:DatabaseHelper (1997)
Hiding Contexts (2000)
UPDATE PROBLEM (1997)