Re: logout after authenticated

This WebDNA talk-list message is from

2002


It keeps the original formatting.
numero = 41813
interpreted = N
texte = Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote: >I agree with the cookies. >My site allows users to log in with a form. >I then write and encrypted session cookie with the following: >[lookup their UserID from passed form variables]*[math >show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep] >On each protected page, I decrypt their cookie, get their UserID, and then >also check to make sure they are at the same Ipaddress and the date is >either the same or minus 1. (incase they have a cookie set late at night and >they stay on past midnight. > >Once they close the browser, or click on log out (which replaces their >cookie with blank values) no one can get back into the system with logging >back in. > >Brian > >-----Original Message----- >From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf >Of Dean Smith >Sent: Monday, July 22, 2002 3:47 PM >To: WebCatalog Talk >Subject: Re: logout after authenticated > > >One more thing, I trigger the popup with an onUnload javascript in the >window whose closing I want to log the user out. > >Dean Smith > > > From: Dean Smith > > Reply-To: (WebCatalog Talk) > > Date: Mon, 22 Jul 2002 11:33:09 -0800 > > To: (WebCatalog Talk) > > Subject: Re: logout after authenticated > > > > I have used a window that quickly pops up and 1) kills the cookie, 2) logs > > the user out, and 3) disappears. It is done with webDNA and a meta in the > > popup. > > > > Dean Smith > > The Padilla Group > > www.thepadillagroup.com > > > >> From: Lester Emo > >> Reply-To: (WebCatalog Talk) > >> Date: Mon, 22 Jul 2002 13:19:42 > >> To: (WebCatalog Talk) > >> Subject: Re: logout after authenticated > >> > >> Are you doing with with the plain and simple > >> popup authenticate box that asks for Username / Password??? > >> > >> > >> > >> At 01:15 PM 7/22/02, you wrote: > >>> You could also use a cookie-based login/logout system. We've done this > >>> successfully for a few clients. When users sign up, their info is >captured > >>> in a database with a unique ID number and we set a cookie. Each >members > >>> page checks for the cookie and hides or displays information >accordingly. > >>> When the user logs out, the cookie is removed. > >>> > >>> > >>> On 7/22/02 1:10 PM, Lester Emo wrote: > >>> > >>>> Just checking if anyone has implemented a way to allow a > >>>> user to logoff after they have logged into a group of > >>>> pages that are protected using [protect] and MultiGroupChecker. > >>>> > >>>> I'm not using anything terribly complicated. > >>>> What I currently have is working fine. > >>>> > >>>> My main goal was to allow a user to view pages > >>>> without having to embed info into links or creating > >>>> carts to pass around in links etc . . . > >>>> > >>>> One thing that concerns me is a user leaving their > >>>> browser open and anyone else then having access > >>>> to the pages I'm protecting. > >>>> > >>>> After looking in the talk-list archives all weekend long it > >>>> seems having a customized html page with user / pass etc > >>>> is the only way to offer a logoff button. > >>>> > >>>> > >>>> thanks > >>> > >>> > >>> --------------------------------------------------------------------- > >>> Clint Davis > >>> Webmaster / Interactive Media Specialist > >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com > >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999 > >>> --------------------------------------------------------------------- > >>> > >>> > >>> ------------------------------------------------------------- > >>> This message is sent to you because you are subscribed to > >>> the mailing list . > >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to > >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/ > >> > >> > >> ------------------------------------------------------------- > >> This message is sent to you because you are subscribed to > >> the mailing list . > >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to > >> > >> Web Archive of this list is at: http://search.smithmicro.com/ > >> > > > > > > ------------------------------------------------------------- > > This message is sent to you because you are subscribed to > > the mailing list . > > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > > > Web Archive of this list is at: http://search.smithmicro.com/ > > > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: logout after authenticated (Lester Emo 2002)
  2. Re: logout after authenticated (Dean Smith 2002)
  3. Re: logout after authenticated (Dean Smith 2002)
  4. Re: logout after authenticated (Brian Boegershausen 2002)
  5. Re: logout after authenticated (Lester Emo 2002)
  6. Re: logout after authenticated (Clint Davis 2002)
  7. logout after authenticated (Lester Emo 2002)
Thanks for the tips and directions to useI'll give using cookies a try.At 03:23 PM 7/22/02, you wrote: >I agree with the cookies. >My site allows users to log in with a form. >I then write and encrypted session cookie with the following: >[lookup their UserID from passed form variables]*[math >show=T]{[date]}[/math]*[Grep search=([.])&replace=][ipaddress][/grep] >On each protected page, I decrypt their cookie, get their UserID, and then >also check to make sure they are at the same Ipaddress and the date is >either the same or minus 1. (incase they have a cookie set late at night and >they stay on past midnight. > >Once they close the browser, or click on log out (which replaces their >cookie with blank values) no one can get back into the system with logging >back in. > >Brian > >-----Original Message----- >From: WebCatalog Talk [mailto:WebDNA-Talk@talk.smithmicro.com]On Behalf >Of Dean Smith >Sent: Monday, July 22, 2002 3:47 PM >To: WebCatalog Talk >Subject: Re: logout after authenticated > > >One more thing, I trigger the popup with an onUnload javascript in the >window whose closing I want to log the user out. > >Dean Smith > > > From: Dean Smith > > Reply-To: (WebCatalog Talk) > > Date: Mon, 22 Jul 2002 11:33:09 -0800 > > To: (WebCatalog Talk) > > Subject: Re: logout after authenticated > > > > I have used a window that quickly pops up and 1) kills the cookie, 2) logs > > the user out, and 3) disappears. It is done with webDNA and a meta in the > > popup. > > > > Dean Smith > > The Padilla Group > > www.thepadillagroup.com > > > >> From: Lester Emo > >> Reply-To: (WebCatalog Talk) > >> Date: Mon, 22 Jul 2002 13:19:42 > >> To: (WebCatalog Talk) > >> Subject: Re: logout after authenticated > >> > >> Are you doing with with the plain and simple > >> popup authenticate box that asks for Username / Password??? > >> > >> > >> > >> At 01:15 PM 7/22/02, you wrote: > >>> You could also use a cookie-based login/logout system. We've done this > >>> successfully for a few clients. When users sign up, their info is >captured > >>> in a database with a unique ID number and we set a cookie. Each >members > >>> page checks for the cookie and hides or displays information >accordingly. > >>> When the user logs out, the cookie is removed. > >>> > >>> > >>> On 7/22/02 1:10 PM, Lester Emo wrote: > >>> > >>>> Just checking if anyone has implemented a way to allow a > >>>> user to logoff after they have logged into a group of > >>>> pages that are protected using [protect] and MultiGroupChecker. > >>>> > >>>> I'm not using anything terribly complicated. > >>>> What I currently have is working fine. > >>>> > >>>> My main goal was to allow a user to view pages > >>>> without having to embed info into links or creating > >>>> carts to pass around in links etc . . . > >>>> > >>>> One thing that concerns me is a user leaving their > >>>> browser open and anyone else then having access > >>>> to the pages I'm protecting. > >>>> > >>>> After looking in the talk-list archives all weekend long it > >>>> seems having a customized html page with user / pass etc > >>>> is the only way to offer a logoff button. > >>>> > >>>> > >>>> thanks > >>> > >>> > >>> --------------------------------------------------------------------- > >>> Clint Davis > >>> Webmaster / Interactive Media Specialist > >>> Gray Loon Marketing Group, Inc. http://www.grayloon.com > >>> 204 Main Street | Evansville, IN 47708 | Phone:812-422-9999 > >>> --------------------------------------------------------------------- > >>> > >>> > >>> ------------------------------------------------------------- > >>> This message is sent to you because you are subscribed to > >>> the mailing list . > >>> To unsubscribe, E-mail to: > >>> To switch to the DIGEST mode, E-mail to > >>> > >>> Web Archive of this list is at: http://search.smithmicro.com/ > >> > >> > >> ------------------------------------------------------------- > >> This message is sent to you because you are subscribed to > >> the mailing list . > >> To unsubscribe, E-mail to: > >> To switch to the DIGEST mode, E-mail to > >> > >> Web Archive of this list is at: http://search.smithmicro.com/ > >> > > > > > > ------------------------------------------------------------- > > This message is sent to you because you are subscribed to > > the mailing list . > > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to > > > > Web Archive of this list is at: http://search.smithmicro.com/ > > > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ > > >------------------------------------------------------------- >This message is sent to you because you are subscribed to > the mailing list . >To unsubscribe, E-mail to: >To switch to the DIGEST mode, E-mail to > >Web Archive of this list is at: http://search.smithmicro.com/ ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Lester Emo

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

RE: [WebDNA] IIS 6.0 Custom Errors & WebDNA 6.2 (2009) Max Record length restated as maybe bug (1997) I give up!! (1997) Using [random] (1999) shortening the cart (1998) RE: WebCat and image maps (1997) Satistics (1999) wierd [cart] action! (1997) Lambada for Macintosh is Here! (1996) OT: How to get more traffic to a site? (2005) Format all of a sudden doesn't work (1997) Round UP to nearest 100 (2007) WebDNA Solutions ... sorry! (1997) Download URL & access on the fly ? (1997) Intermitent problem using [referrer] (1997) writefile and deletefile (1998) Nested tags count question (1997) Sorting error (1997) WebCatalog can't find database (1997) [createfolder] & [deletefolder] (1997)