Re: log out
This WebDNA talk-list message is from 2001
It keeps the original formatting.
numero = 38749
interpreted = N
texte = There is no perfect scheme because of the disparity with which browsershandle the situation.I like using session cookies for authentication because you can set theirvalue to null or whatever when the person logs out, and redirect to a loginpage by testing whether the cookie has been set or not. You can also setthem to expire after a certain time interval as an extra (albeit imperfect)measure of protection.> I have tried to tell him to just let the user know to close the browser> after he is done.This wouldn't make me comfortable if I was your client ;)I wonder if there might be a script or javascript solution that would forcequit the browser after a certain period of inactivity?Will StarckNovaDermskin care sciencesupport@novaderm.com800-378-1740----- Original Message -----From: Arturo Vargas
To: WebCatalog Talk Sent: Wednesday, September 19, 2001 3:57 PMSubject: Re: log out>>>>> >I can't use the [protect] tag, since the customer needs to be able tosetup> >new passwords for his new clients.> >That and it wont make any difference.>> So he is incapable of adding new usernames and pw's to a db? How's hegonna> add them to the db that authenticate uses?> *By using the [authenticate] tag he can just add usernames and passwordsto> a database. I don't know how he could do this if I was to use the[protect]> tag>> Yes, it will make a difference, but neither approach will stop a user from> walking away from the machine while logged on. You'll have to set a timerto> check for action on the user's part to log them out automatically. Even> then, someone could access the machine before the timer goes off.> *I meant it wont make a difference as far as my problem goes, the browser> will remember the username and password in either case.>> You're trying to make something foolproof and fools will outsmart youevery> time.> *I know what you are saying, but this is a feature that the customerwants.> I have tried to tell him to just let the user know to close the browser> after he is done.> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://search.smithmicro.com/>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
There is no perfect scheme because of the disparity with which browsershandle the situation.I like using session cookies for authentication because you can set theirvalue to null or whatever when the person logs out, and redirect to a loginpage by testing whether the cookie has been set or not. You can also setthem to expire after a certain time interval as an extra (albeit imperfect)measure of protection.> I have tried to tell him to just let the user know to close the browser> after he is done.This wouldn't make me comfortable if I was your client ;)I wonder if there might be a script or javascript solution that would forcequit the browser after a certain period of inactivity?Will StarckNovaDermskin care sciencesupport@novaderm.com800-378-1740----- Original Message -----From: Arturo Vargas To: WebCatalog Talk Sent: Wednesday, September 19, 2001 3:57 PMSubject: Re: log out>>>>> >I can't use the [protect] tag, since the customer needs to be able tosetup> >new passwords for his new clients.> >That and it wont make any difference.>> So he is incapable of adding new usernames and pw's to a db? How's hegonna> add them to the db that authenticate uses?> *By using the [authenticate] tag he can just add usernames and passwordsto> a database. I don't know how he could do this if I was to use the[protect]> tag>> Yes, it will make a difference, but neither approach will stop a user from> walking away from the machine while logged on. You'll have to set a timerto> check for action on the user's part to log them out automatically. Even> then, someone could access the machine before the timer goes off.> *I meant it wont make a difference as far as my problem goes, the browser> will remember the username and password in either case.>> You're trying to make something foolproof and fools will outsmart youevery> time.> *I know what you are saying, but this is a feature that the customerwants.> I have tried to tell him to just let the user know to close the browser> after he is done.> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://search.smithmicro.com/>>> -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Will Starck
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Dubble Sku's in a Database (1999)
Separate SSL Server (1997)
error -43 (1998)
Fwd: Problems with Webcatalog Plug-in (1997)
[WebDNA] CSS Advice (2008)
Converting back to numerical date (2003)
Roundup function? (1997)
[WebDNA] TCPConnect assist (2016)
php + WebCatalog in same files (2001)
WebCat2: Items xx to xx shown, etc. (1997)
Change Subtotal (2000)
WebDNA quitting (2008)
calculating tax rates, mail order solutions and version 2 (1997)
Web Catalog 2 demo (1997)
take me off mail list please (2001)
Time to opensource? (2006)
Multiple catalog databases and showcart (1997)
RE: [WebDNA] Check for Ending Carriage Return (2009)
WebCatalog/Mac 2.1b2 New Features (1997)
[WebDNA] Need to convert unix date? (2009)