dawber
Posts: 25
|
| Posted: 01/15/2005, 3:26 PM |
|
Got authentication working for my 12 php web pages.
Login and logout works when it should.
Setup my logout so that it takes you back to the login page.
This is great except for the fact that parameters like
these are visible in the URL at the login page:
Logout
ret_link
type
and all the various application sort and data parameters
As I test the various logout possibilities more and more
of these parameters appear in the URL of the login page.
Is there a way to throw away all the parameters (regardless of
which page you logged out from) and have the login URL look
clean and simple like this:
https:// ... /login.php
|
 |
 |
dawber
Posts: 25
|
| Posted: 01/15/2005, 3:30 PM |
|
In addition to the having a clean login URL, the other concern
I have is that some of these sort and data parameters might
contain sensitive user data.
So of course, I do not want that to appear in the login URL.
|
|
|
|
peterr
Posts: 5971
|
| Posted: 01/16/2005, 2:18 AM |
|
I'm not sure how you setup that logout link, but all it should be is: website.com/Login.php?Logout=true
And you can specify in any link's properties "Preserve Paramaters = None" so that no other parameters will be passed to your Login/Logout page.
Or you can create a separate Logout page where nothing else happens by just the logout, plus you can redirect logged-out users to another page.
_________________
Peter R.
YesSoftware Forums Moderator
For product support please visit http://support.yessoftware.com |
|
|
|
dawber
Posts: 25
|
| Posted: 01/16/2005, 4:49 PM |
|
My mistake. Forgot to do "Preserve Paramaters = None". That took care of it.
Thank you Peter.
|
|
|
|
|
