Login and Session Maintenance

[ColdAir]

Hi,

I have an web application, where it will take to the homepage when the user
logs in correctly through the initial login page.

I would like to know, how to maintain the login session throughout the
application after successful login.

Also, from the homepage, if i click back in browser, it takes me to the
login page and when
I click forward it is taking me to the homepage. I would like to restrict
the user, so that the user has to login everytime when the login page is
shown. Basically, I would like to know, how to handle back and forward
buttons through session maintenance.

Thanks

ColdAir

 

[andyho28]

Hi,

I have an web application, where it will take to the homepage when the user
logs in correctly through the initial login page.

I would like to know, how to maintain the login session throughout the
application after successful login.

Also, from the homepage, if i click back in browser, it takes me to the
login page and when
I click forward it is taking me to the homepage.  I would like to restrict
the user, so that the user has to login everytime when the login page is
shown.  Basically, I would like to know, how to handle back and forward
buttons through session maintenance.

Thanks

ColdAir

Keep it with Cookie or Session.

If you use session to store the login info, remember to set the
Session State Mode, either InProc, use Stateserver or SQL Server.

To force user to login everytime they see the login page, you can
clear the session first so that they can't go to the homepage any more
(of course you need to validate the session at the login page).

Hope it help.