Browser Back Button creates problem

[Jaheel22]

Guys

I have a website in ASP. User logs in, then logs out by choosing logg off option. Now if user right clicks on browser back button, then user can get into webiste again even if he already logged out.

My problem i'm not allowed to user session variables or cookies.

If you use Yahoo email, log in, log out, then right click on browser back button and try to go to mail inbox, Yahoo just kicks you out to email login page.

How can i accomplish such kind of technique ?

Thanks indeed ?

Mac

 

[DreXor]

you accomplish this with server side session values or client side cookies.

DreX
aKa - Robert

 

[adam0101]

How are you keeping track of whether the user is authenticated? If you're using another method to pass around a session key of some kind, and your logout script destroys that key, and if you check for that key at the top of every page, then you simply have to disable the browser's cache.

<%
Response.Expires = 60
Response.Expiresabsolute = Now() - 1
Response.AddHeader "pragma","no-cache"
Response.AddHeader "cache-control","private"
Response.CacheControl = "no-cache"
%>

Adam
while(ignorance){perpetuate(violence,fear,hatred);life=life-1};

 

[DreXor]

i guess it might be possible with a meta tag

but without sessions or cookies, it's hard to track who's actually there or gone.

now if you can use sessions on the server side that changes the whole ball of wax.

i guess i'm at a loss due to the limitations presented.

DreX
aKa - Robert

 

[jemminger]

not being allowed to use session cookies is a little absurd IMHO, but you could always just encode the sessionid in the URL or a hidden form field on every page.

=========================================================
-jeff

http://www.jeffemminger.com

try { succeed(); } catch(E) { tryAgain(); } finally { rtfm(); }