Re: relogin same user?

This WebDNA talk-list message is from

1998


It keeps the original formatting.
numero = 18221
interpreted = N
texte = >I know, this question was already here, but maybe someone found a trick in >the meantime... > >I have an application where the admin of a client can change a database via >the web. For security reasons the inactivity-time for an admin is limited >to 20 minutes - that means, if the admin does not klick any link or button >during 20 minutes I assume he left the machine alone and I forbid further >actions without relogin. > >It would be easy if I do the login via a form, but I want to ask for >[username] sometimes so I prefer to login via browser authentication. But >there is the common problem: how to make a browser forget the current user? >I tried some code with [authenticate] within loops, across more templates, >setting variables, but to no avail. Is there any solution, which forces a >login request while the browser is still running?You might want to skip the [protect] stuff and instead, use showif/hideifs to determine what to show the admin -- based on the existence of a cart with the proper username and password values stored in it. At the first access, create a cart with the username and password values stored in it. Then just update the cart every time one of your admin pages is accessed within 20 minutes from the last time that cart was used, and trash the cart if it's been 20 minutes or more since the last time it was used.Sincerely, Ken Grome 808-737-6499 WebDNA Solutions mailto:ken@webdna.net http://www.webdna.net Associated Messages, from the most recent to the oldest:

    
  1. Re: relogin same user? (bob 1998)
  2. Re: relogin same user? (Peter Ostry 1998)
  3. Re: relogin same user? (bob 1998)
  4. Re: relogin same user? (Peter Ostry 1998)
  5. Re: relogin same user? (bob 1998)
  6. Re: relogin same user? (Kenneth Grome 1998)
  7. relogin same user? (Peter Ostry 1998)
>I know, this question was already here, but maybe someone found a trick in >the meantime... > >I have an application where the admin of a client can change a database via >the web. For security reasons the inactivity-time for an admin is limited >to 20 minutes - that means, if the admin does not klick any link or button >during 20 minutes I assume he left the machine alone and I forbid further >actions without relogin. > >It would be easy if I do the login via a form, but I want to ask for >[username] sometimes so I prefer to login via browser authentication. But >there is the common problem: how to make a browser forget the current user? >I tried some code with [authenticate] within loops, across more templates, >setting variables, but to no avail. Is there any solution, which forces a >login request while the browser is still running?You might want to skip the [protect] stuff and instead, use showif/hideifs to determine what to show the admin -- based on the existence of a cart with the proper username and password values stored in it. At the first access, create a cart with the username and password values stored in it. Then just update the cart every time one of your admin pages is accessed within 20 minutes from the last time that cart was used, and trash the cart if it's been 20 minutes or more since the last time it was used.Sincerely, Ken Grome 808-737-6499 WebDNA Solutions mailto:ken@webdna.net http://www.webdna.net Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

How much is too much? I can never remember the answer. (2002) Does TCPconnect/TCPsend do multiples? (2000) Great product and great job ! (1997) WebCat2 Append problem (B14Macacgi) (1997) upgrade? (1997) Sorting (1998) [WebDNA] RE: tcp connect to check domain names (2009) Help! WebCat2 bug (1997) Display [price] in banner ad (1998) WebCat2b12 - nesting [tags] (1997) [OT] Domain Name Scam (2000) [WriteFile] problems (1997) Sorting nested search (2003) Running 2 two WebCatalog.acgi's (1996) question: search return in order (1997) Generating unique SKU from [cart] - Still Stumped... (1997) Purchased cart being overwritten - still !?? (1997) I give up!! (1997) WCS Newbie question (1997) shipcost (1997)