RE: Controlling the Browser back button
by "Ann Ezzell" <amcbainezzell(at)alum.mit.edu>
|
| Date: |
Wed, 29 Nov 2000 10:05:03 -0700 |
| To: |
"'Davies,
Elizabeth H.'" <EHDavies(at)West.com>,
"'HWG-technique Mailing List (E-mail)'" <hwg-techniques(at)hwg.org> |
| In-Reply-To: |
wtc |
| |
todo: View
Thread,
Original
|
|
Can you use ASP on your site? If so, you can do all manner of things.
An example off the top of my head:
Create a session variable when the user logs in. On the login page,
check for that session variable. If it exists, log out the user and
force him/her to log in again.
> -----Original Message-----
> From: Davies, Elizabeth H.
> Sent: November 29, 2000 8:36 AM
> Is there a way to not only OPEN a new window (easy enough with the
> target_blank ability), but to also CLOSE the old browser
> window? I could not
> see how it could be accomplished while remaining in the same
> window since
> Browser's protect their history fairly well. You can make it
> harder with a
> redirect, but anyone who knows how to access the longer 'back
> history' or
> can click really fast will blow past that.
>
> The problem:
> I work on an intranet (IE 5.0+) and for security reasons am trying
to
> prevent a user from going 'back' to their log-in page (where
> they can log
> into several different areas). When they go 'back' they don't
> actually log
> out, and they remain active. While they are supposed to log
> out, then log
> back into a different area, it's easier for them to simply
> hit 'back' ...
> Some of this can be controlled by the database access, but
> several users
> apparently don't realize that just because they are staring
> at a log-in
> screen (after they hit the back button), they are still
> logged on... then
> they wander off without logging out or in to a different
> area, leaving their
> desktop open for anyone to hit the 'forward' button and tromp.
>
> Elizabeth Davies
> Web Designer
>
HWG hwg-techniques mailing list archives,
maintained by Webmasters @ IWA