RE: Detecting session time out in custom log in page
From: MSFT (lukezhan_at_online.microsoft.com)
Date: 10/08/03
- Next message: Alain: "Hosting security"
- Previous message: gorden blom: "Re: login redirect doesn't work"
- In reply to: Stephen Walch: "Detecting session time out in custom log in page"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 08 Oct 2003 08:04:34 GMT
Hi Steve,
The TimeOut attribute here only make sense when we use non-persistent
cookie for the form authentication. When it is timeout, the cookie has a
null value which is same as a new login. We can't decide from it.
Anyway, we may set a session variant when your user first logon, for
example, record the logon in time. This can be an evidence when we check if
it is a new login or get back from timeout.
Luke
Microsoft Online Support
Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
- Next message: Alain: "Hosting security"
- Previous message: gorden blom: "Re: login redirect doesn't work"
- In reply to: Stephen Walch: "Detecting session time out in custom log in page"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
