Re: Disallowing concurrent login using the same user account
From: Svein Terje Gaup (stgaup_at_broadpark.no.spam)
Date: 09/15/04
- Previous message: Svein Terje Gaup: "Re: Cryptographic service provider (CSP) could not be found for this algorithm."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 15 Sep 2004 22:18:32 +0200
I've been using a similar method, and it works well.
Sincerely
Svein Terje Gaup
"Zeng" <zzy@nonospam.com> wrote in message
news:eQX%23cfsiEHA.2340@TK2MSFTNGP11.phx.gbl...
>I would like to prevent someone sharing a login in my .net app but I know
> that it would
> know that would be difficult so it would be acceptable to prevent
> concurrent
> logins. So here is my current plan, each time a user logins we will
> create
> a unique id (a guid for example) and store it both in the cookie and in
> our
> server for the login name. Our server will check for matching of that id
> for
> each subsequent access (read, write data etc), if it is not matched, then
> we
> will automatically log the user out. So if 2 people are using the same
> login name, the 2nd person logging in will kick the 1st one out. Does
> anybody
> see any problem/hole with that approach?
>
> Thank you very much advance for you help!
>
>
- Previous message: Svein Terje Gaup: "Re: Cryptographic service provider (CSP) could not be found for this algorithm."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
