Question about secured website

J

Joe

Hi,

We want to build a couple of secured pages which will be viewable only to
those who have an account. One way of implementing the security is using
session cookies (temporary cookies). When a user logs in a session cookie is
created. When the browser window is closed the session cookie disappears.
This way when the browser is closed the session is over. So that even if one
tries to copy and past the URL of a secured page, they won’t be able to view
the page unless they log in.

Is there any other way of building a secured website that will work just
like I described above ( session should be over as soon as browser window is
close)?

Thanks,

Joe
 
T

Tom Kaminski [MVP]

Joe said:
Hi,

We want to build a couple of secured pages which will be viewable only to
those who have an account. One way of implementing the security is using
session cookies (temporary cookies). When a user logs in a session cookie
is
created. When the browser window is closed the session cookie disappears.
This way when the browser is closed the session is over. So that even if
one
tries to copy and past the URL of a secured page, they won't be able to
view
the page unless they log in.

Is there any other way of building a secured website that will work just
like I described above ( session should be over as soon as browser window
is
close)?
Click to expand...

You could just as well use Windows security with Basic or Windows Integrated
authentication in IIS. You would then lock down NTFS permissions on your
content files, giving Read access only to the appropriate users or groups.
 
B

Bullschmidt

Perhaps this may hopefully give you some ideas:

Classic ASP Design Tips - Login Page
http://www.bullschmidt.com/devtip-loginpage.asp

Best regards,
J. Paul Schmidt, Freelance ASP Web Developer
http://www.Bullschmidt.com
ASP Design Tips, ASP Web Database Demo, Free ASP Bar Chart Tool...

<<
We want to build a couple of secured pages which will be viewable only
to
those who have an account. One way of implementing the security is using
session cookies (temporary cookies). When a user logs in a session
cookie is
created. When the browser window is closed the session cookie
disappears.
This way when the browser is closed the session is over. So that even if
one
tries to copy and past the URL of a secured page, they won’t be able
to view
the page unless they log in.

Is there any other way of building a secured website that will work just
like I described above ( session should be over as soon as browser
window is
close)?

Thanks,

Joe
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

I need help fixing my website 2
Minimizing features of a website as the browser minimizes 1
How to go about building a crud app when you are a noob 1
Linking secured SSL domain with unsecure domain smoothly -- any ideas? 5
General question about persistence 21
Simple question about cookies 0
Cannot access direct URLs of specific website. 16
Serious problem with vatican website 3

Members online

No members online now.
Total: 28 (members: 0, guests: 28)
Robots: 149

Forum statistics

Threads
473,776
Messages
2,569,603
Members
45,188
Latest member
Crypto TaxSoftware

Latest Threads

Top