Re: Clear Login

From: Barry Margolin (barmar@genuity.net)
Date: 11/08/02

• Next message: Rob Slade, doting grandpa of Ryan and Trevor: "REVIEW: "Information Assurance", Joseph G. Boyce/Dan W. Jennings"
• Previous message: Alan: "Re: Random Numbers"
• In reply to: Walter Roberson: "Re: Clear Login"
• Next in thread: chris@nospam.com: "Re: Clear Login"
• Reply: chris@nospam.com: "Re: Clear Login"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: Barry Margolin <barmar@genuity.net>
Date: Fri, 08 Nov 2002 15:26:54 GMT

In article <aqffil$8g2$1@canopus.cc.umanitoba.ca>,
Walter Roberson <roberson@ibd.nrc.ca> wrote:
>In article <aqevb2$o8i$1@bob.news.rcn.net>,
>Omar Bohsali <omarbohsali@omarbohsali.com> wrote:
>:I have an htaccess system set up. It works fine. One problem. After somebody
>:logs in, they are "always" logged in for a period of several days. How can I
>:make it that when the user closes the browser window, that they have re
>:enter their username and password?
>
>Credentials are held by the -browser-, not by the -window-. If they
>weren't, you'd have to put in your password for every frame.
>
>What do you want to have happen if the user has multiple windows open
>to your site?
>
>If you want to force credentials to be per-window then you're probably
>going to have to get into using java to manage the connection.

Most web sites that want to perform this level of control don't seem to use
htaccess or HTTP passwords at all. Instead, they require the user to fill
out a login form on the web page itself, and make use of cookies to keep
track of the session. There's usually a "Logout" link on the web pages
that invalidates the cookie, and it can also have an associated timer.

I'm sure the folks in comp.infosystems.www.authoring.* can provide better
explanations of how to implement this stuff than we can.

-- 
Barry Margolin, barmar@genuity.net
Genuity, Woburn, MA
*** DON'T SEND TECHNICAL QUESTIONS DIRECTLY TO ME, post them to newsgroups.
Please DON'T copy followups to me -- I'll assume it wasn't posted to the group.

---

• Next message: Rob Slade, doting grandpa of Ryan and Trevor: "REVIEW: "Information Assurance", Joseph G. Boyce/Dan W. Jennings"
• Previous message: Alan: "Re: Random Numbers"
• In reply to: Walter Roberson: "Re: Clear Login"
• Next in thread: chris@nospam.com: "Re: Clear Login"
• Reply: chris@nospam.com: "Re: Clear Login"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Clear Login ... >>:I have an htaccess system set up. ... >>:make it that when the user closes the browser window, ... >out a login form on the web page itself, and make use of cookies to keep ... This might be a simple case of the browser caching the page. ... (comp.security.misc) Re: Group Questionnaire for Usenet users ... I thought, though, that my browser window had been resized on earlier versions. ... so the survey has served one useful purpose. ... Javascript disabled. ... Unfortunately too many web sites these days insist ... (alt.usage.english) Re: .wmv and .asf files not found by WMP 11 ... main page by dragging the file into an open web browser window. ... WMP started but the screen was blank and the word "DONE" was ... the pathname to all my web sites on my local computer. ... When I was first learning html ... (microsoft.public.windowsmedia.player) Re: Framed web site ... (I could not find anything in the NTL page to verify it) ... When you open the BBC or NTL page the browser window is given the name ... > of NTL the framed web sites I have done muck up. ... (microsoft.public.frontpage.client) Re: How to clear Cookies? ... Just do not set Expires attribute on cookie and it will expire when session ... ends (usually when user closes browser window). ... Scripting/HTA/.Net Framework IDE ... I use cookies to check user's access right, ... (microsoft.public.scripting.vbscript)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)