Re: Controlling the Browser back button

Well, you could put an expiration on the session or cookie or whatever
method you're using.

Client side, you could use the event handler that everyone uses to pop up
annoying ads which says when someone leaves a page and have it trigger a
script to log someone out.



----- Original Message -----
From: "Davies, Elizabeth H." <EHDavies(at)West.com>
To: "HWG-technique Mailing List (E-mail)" <hwg-techniques(at)hwg.org>
Sent: Wednesday, November 29, 2000 9:36 AM
Subject: Controlling the Browser back button


> Is there a way to not only OPEN a new window (easy enough with the
> target_blank ability), but to also CLOSE the old browser window? I could
not
> see how it could be accomplished while remaining in the same window since
> Browser's protect their history fairly well. You can make it harder with a
> redirect, but anyone who knows how to access the longer 'back history' or
> can click really fast will blow past that.
>
> The problem:
> I work on an intranet (IE 5.0+) and for security reasons am trying to
> prevent a user from going 'back' to their log-in page (where they can log
> into several different areas). When they go 'back' they don't actually log
> out, and they remain active. While they are supposed to log out, then log
> back into a different area, it's easier for them to simply hit 'back' ...
> Some of this can be controlled by the database access, but several users
> apparently don't realize that just because they are staring at a log-in
> screen (after they hit the back button), they are still logged on... then
> they wander off without logging out or in to a different area, leaving
their
> desktop open for anyone to hit the 'forward' button and tromp.
>
> Elizabeth Davies
> Web Designer
>
>
>

HWG hwg-techniques mailing list archives, maintained by Webmasters @ IWA