On Thu, 16 Aug 2001, Wai Mun wrote:

> u can use javascript on the client side; if u have designed your
> pages to be javascript-enabled specific.
> ----- Original Message -----
> From: "John Waugh" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Wednesday, August 15, 2001 23:22
> Subject: Timing out Secure session
>
>
> > hi,
> >
> > I was thinking about making a secure web site, but the thought has just
> > crossed my mind that I'd like it when a user visits the page on the site,
> > then another site, then say presses back and refresh, to make the user
> have
> > to relogin.
> > how on earth would I detect the fact that the user has left the site using
> > the session api. I haven't been able to come up with anything.
> >
> > any suggestions or other approaches anyone?

I haven't followed this entire thread -- has anyone suggested making
use of the Referrer header?  Wouldn't be foolproof, but I'm not sure
there is a foolproof way to do this.

Milt Epstein
Research Programmer
Software/Systems Development Group
Computing and Communications Services Office (CCSO)
University of Illinois at Urbana-Champaign (UIUC)
[EMAIL PROTECTED]

___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".

Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html

Reply via email to