Re: logout after authenticated
This WebDNA talk-list message is from 2002
It keeps the original formatting.
numero = 41813
interpreted = N
texte = Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote:>I agree with the cookies.>My site allows users to log in with a form.>I then write and encrypted session cookie with the following:>[lookup their UserID from passed form variables]*[math>show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep]>On each protected page, I decrypt their cookie, get their UserID, and then>also check to make sure they are at the same Ipaddress and the date is>either the same or minus 1. (incase they have a cookie set late at night and>they stay on past midnight.>>Once they close the browser, or click on log out (which replaces their>cookie with blank values) no one can get back into the system with logging>back in.>>Brian>>-----Original Message----->From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf>Of Dean Smith>Sent: Monday, July 22, 2002 3:47 PM>To: WebCatalog Talk>Subject: Re: logout after authenticated>>>One more thing, I trigger the popup with an onUnload javascript in the>window whose closing I want to log the user out.>>Dean Smith>> > From: Dean Smith
> > Reply-To: (WebCatalog Talk)> > Date: Mon, 22 Jul 2002 11:33:09 -0800> > To: (WebCatalog Talk)> > Subject: Re: logout after authenticated> >> > I have used a window that quickly pops up and 1) kills the cookie, 2) logs> > the user out, and 3) disappears. It is done with webDNA and a meta in the> > popup.> >> > Dean Smith> > The Padilla Group> > www.thepadillagroup.com> >> >> From: Lester Emo > >> Reply-To: (WebCatalog Talk)> >> Date: Mon, 22 Jul 2002 13:19:42> >> To: (WebCatalog Talk)> >> Subject: Re: logout after authenticated> >>> >> Are you doing with with the plain and simple> >> popup authenticate box that asks for Username / Password???> >>> >>> >>> >> At 01:15 PM 7/22/02, you wrote:> >>> You could also use a cookie-based login/logout system. We've done this> >>> successfully for a few clients. When users sign up, their info is>captured> >>> in a database with a unique ID number and we set a cookie. Each>members> >>> page checks for the cookie and hides or displays information>accordingly.> >>> When the user logs out, the cookie is removed.> >>>> >>>> >>> On 7/22/02 1:10 PM, Lester Emo wrote:> >>>> >>>> Just checking if anyone has implemented a way to allow a> >>>> user to logoff after they have logged into a group of> >>>> pages that are protected using [protect] and MultiGroupChecker.> >>>>> >>>> I'm not using anything terribly complicated.> >>>> What I currently have is working fine.> >>>>> >>>> My main goal was to allow a user to view pages> >>>> without having to embed info into links or creating> >>>> carts to pass around in links etc . . .> >>>>> >>>> One thing that concerns me is a user leaving their> >>>> browser open and anyone else then having access> >>>> to the pages I'm protecting.> >>>>> >>>> After looking in the talk-list archives all weekend long it> >>>> seems having a customized html page with user / pass etc> >>>> is the only way to offer a logoff button.> >>>>> >>>>> >>>> thanks> >>>> >>>> >>> ---------------------------------------------------------------------> >>> Clint Davis> >>> Webmaster / Interactive Media Specialist> >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com> >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999> >>> ---------------------------------------------------------------------> >>>> >>>> >>> -------------------------------------------------------------> >>> This message is sent to you because you are subscribed to> >>> the mailing list .> >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to> >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/> >>> >>> >> -------------------------------------------------------------> >> This message is sent to you because you are subscribed to> >> the mailing list .> >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to> >> > >> Web Archive of this list is at: http://search.smithmicro.com/> >>> >> >> > -------------------------------------------------------------> > This message is sent to you because you are subscribed to> > the mailing list .> > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to> > > > Web Archive of this list is at: http://search.smithmicro.com/> >>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to>>Web Archive of this list is at: http://search.smithmicro.com/>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >>Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote:>I agree with the cookies.>My site allows users to log in with a form.>I then write and encrypted session cookie with the following:>[lookup their UserID from passed form variables]*[math>show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep]>On each protected page, I decrypt their cookie, get their UserID, and then>also check to make sure they are at the same Ipaddress and the date is>either the same or minus 1. (incase they have a cookie set late at night and>they stay on past midnight.>>Once they close the browser, or click on log out (which replaces their>cookie with blank values) no one can get back into the system with logging>back in.>>Brian>>-----Original Message----->From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf>Of Dean Smith>Sent: Monday, July 22, 2002 3:47 PM>To: WebCatalog Talk>Subject: Re: logout after authenticated>>>One more thing, I trigger the popup with an onUnload javascript in the>window whose closing I want to log the user out.>>Dean Smith>> > From: Dean Smith > > Reply-To: (WebCatalog Talk)> > Date: Mon, 22 Jul 2002 11:33:09 -0800> > To: (WebCatalog Talk)> > Subject: Re: logout after authenticated> >> > I have used a window that quickly pops up and 1) kills the cookie, 2) logs> > the user out, and 3) disappears. It is done with webDNA and a meta in the> > popup.> >> > Dean Smith> > The Padilla Group> > www.thepadillagroup.com> >> >> From: Lester Emo > >> Reply-To: (WebCatalog Talk)> >> Date: Mon, 22 Jul 2002 13:19:42> >> To: (WebCatalog Talk)> >> Subject: Re: logout after authenticated> >>> >> Are you doing with with the plain and simple> >> popup authenticate box that asks for Username / Password???> >>> >>> >>> >> At 01:15 PM 7/22/02, you wrote:> >>> You could also use a cookie-based login/logout system. We've done this> >>> successfully for a few clients. When users sign up, their info is>captured> >>> in a database with a unique ID number and we set a cookie. Each>members> >>> page checks for the cookie and hides or displays information>accordingly.> >>> When the user logs out, the cookie is removed.> >>>> >>>> >>> On 7/22/02 1:10 PM, Lester Emo wrote:> >>>> >>>> Just checking if anyone has implemented a way to allow a> >>>> user to logoff after they have logged into a group of> >>>> pages that are protected using [protect] and MultiGroupChecker.> >>>>> >>>> I'm not using anything terribly complicated.> >>>> What I currently have is working fine.> >>>>> >>>> My main goal was to allow a user to view pages> >>>> without having to embed info into links or creating> >>>> carts to pass around in links etc . . .> >>>>> >>>> One thing that concerns me is a user leaving their> >>>> browser open and anyone else then having access> >>>> to the pages I'm protecting.> >>>>> >>>> After looking in the talk-list archives all weekend long it> >>>> seems having a customized html page with user / pass etc> >>>> is the only way to offer a logoff button.> >>>>> >>>>> >>>> thanks> >>>> >>>> >>> ---------------------------------------------------------------------> >>> Clint Davis> >>> Webmaster / Interactive Media Specialist> >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com> >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999> >>> ---------------------------------------------------------------------> >>>> >>>> >>> -------------------------------------------------------------> >>> This message is sent to you because you are subscribed to> >>> the mailing list .> >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to> >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/> >>> >>> >> -------------------------------------------------------------> >> This message is sent to you because you are subscribed to> >> the mailing list .> >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to> >> > >> Web Archive of this list is at: http://search.smithmicro.com/> >>> >> >> > -------------------------------------------------------------> > This message is sent to you because you are subscribed to> > the mailing list .> > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to> > > > Web Archive of this list is at: http://search.smithmicro.com/> >>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to>>Web Archive of this list is at: http://search.smithmicro.com/>>>------------------------------------------------------------->This message is sent to you because you are subscribed to> the mailing list .>To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to >>Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Lester Emo
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
RE: [WebDNA] IIS 6.0 Custom Errors & WebDNA 6.2 (2009)
Max Record length restated as maybe bug (1997)
I give up!! (1997)
Using [random] (1999)
shortening the cart (1998)
RE: WebCat and image maps (1997)
Satistics (1999)
wierd [cart] action! (1997)
Lambada for Macintosh is Here! (1996)
OT: How to get more traffic to a site? (2005)
Format all of a sudden doesn't work (1997)
Round UP to nearest 100 (2007)
WebDNA Solutions ... sorry! (1997)
Download URL & access on the fly ? (1997)
Intermitent problem using [referrer] (1997)
writefile and deletefile (1998)
Nested tags count question (1997)
Sorting error (1997)
WebCatalog can't find database (1997)
[createfolder] & [deletefolder] (1997)