You may be confusing two threads here, one is how to log-in and the other is to prevent expired pages.
if you use the script that forces the user to log-in, , then it needs to be in the PreHTTP methods By doing the work in pre-http, then you load JUST the login page and not the page you were intending to go to. one other problem, if you go to "abc.htm" and you have not yet logged in, then you need to force the users to log in and then (if you are nice), automatically re-direct the user back to "abc.htm" likewise, if the user just tried to login, then they need to be sent to the main menu page instead. you will find this concept in the "advanced csp presentation" (I have filed the utility but all the work is Peter Cooper's ) over in MGateways utility site. the other section of the thread deals with the "session time-out" - , there is a fully worked examples by Bill that shows how you trap if the session time-out is nearly finished. both utilities are in www.MGateway.com/utility.htm regards kevin
