hello everybody,
               I am preparing an asp login logout script with session variables.But i am facing a problem that after i successfully log out from my page, i can go to the previous page by using the back button.How can i curb this problem that whenever i go to the previous page after logging out i should get the message as to that my session has expired.
Can any body please help me.






Sunmeet Singh Sethi

even if you were to go back to the other page, yu would just be able to see what was there initially, but you can't access more than what you see. If you hit the refresh button, you are supposed to see the session expired message. The simplest trick to go against the back button is to close the page immediately after log off. I have not worked out any other better method for this apart from using the javascript page close property by putting it into the meta tag refresh content section, whereby the page will close after the time set. The code for this is:
<META HTTP-EQUIV=Refresh CONTENT="15; URL=JavaScript:window.close()">
Keep in mind that this code is to be put in the head section

If you are that concerned with this problem you could force every page to expire immediately, or in after reasonable length of time (minutes, seconds?). If the page is set to expire immediately, even when they hit the back button, the browser will re-request it, thus running your code that validates that they are logged in. Then you could display the message, or just kick them back to the login page.

Peter
------------------------------------------------------
Work smarter, not harder.