What comes after FormsAuthentication.SignOut()?

I

IfThenElse

Hi,
I asked this before but not reply, also I asked this in the asp.netSecurtiy
group but the group is in temporary coma no reply for few days.
I am still able to navigate back to secure area even after calling
FormsAuthentication.SignOut().

If I exit the browser and come back in it works fine, If I don't exit the
browser then I can still go to secure areas by modifying the url.

Not sure what to do.

help.

Thank you.
 
B

bruce barker

depends on if you are in cookie mode or not.

in cookie mode it updates the cookie to not have an authentication cookie.

in cookieleess mode it redirects to the login without the url token.
going back in history in this case might resurrect the login token as
its in the url (it still has an expiration, so its not good forever).

-- bruce (sqlwork.com)
 
I

IfThenElse

Bruce,

that is my problem the token is resurrected.

How do I make sure it is completely dead and no chance to resurrection???

Thank you,
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

What comes after writing your program. 0
FormsAuthentication.SignOut() not fully signing off 0
FormsAuthentication.SignOut() what to do after 2
Uhhhhh, What can I do next? 6
Started a new job in web development and now considering resigning after 6 working days. 0
What should I do Before I give up programming? 6
FormsAuthentication.SignOut(); doesn't work... 3
FormsAuthentication.signout does not ?? 1

Members online

Total: 34 (members: 1, guests: 33)
Robots: 473

Forum statistics

Threads
473,769
Messages
2,569,580
Members
45,055
Latest member
SlimSparkKetoACVReview

Latest Threads

Top