Session Variable Problem
I am using a session variable Session("UID") for each of
my registered clients. As soon my client logins, after authentication
I assign Session("UID") a unique Id corresponding to each user which is stored in database and is fixed for a user.
At the top of each page i am checking :
if Session("UID") = "" then response.redirect(logout.asp")
In logOut.asp i simply Abandon the Session.
Now when i try to open a page directly by appending to the querystring a ID which doesnt exist...my code simply redirects to logout.asp.
when i do this for the first time and if i try to go back from logout.asp page and click on any buttons or links..it simply doesnt allow and takes back to the logout page.
But when i login again and try the same thing for the second time...all the links remain effective and operate proerly..indicating that even after call to Session.abandon in logout.asp ...still the Session is active.
What's the problem??
Pls help me out.
|
