|
Hi all,
I have developed an applciation where i have placed a log out link in the master page which redirects to a lout.aspx page where i have placed in the code behind the following code:
Session.RemoveAll()
Response.Redirect("~/Default.aspx")
I am being redirected to the login page but when i press back from the back button in IE7 iam being able to see the last page the user was logged in. How can i prevent that taking into consideration that i dont want to delete the back button in all the web pages, however i need to disable it in the login.aspx page only.
P.S. I have tried the JS
<script language="javascript">history.forward(1);</script> in the Login.aspx page.
thanks
|
|
|
|
|
just try this ....
response.setDateHeader("Expires", 0);
response.setHeader("Pragma", "no-cache");
or
<script>document.execCommand("ClearAuthenticationCache", false)</script>
modified on Monday, October 13, 2008 9:43 AM
|
|
|
|
|
There is no reliable way to stop this. You are seeing a browser cached page when you press back button. If you are sure that all session is removed and user can't proceed without valid session, why you are bothering? You should check the session existence each time page refreshes. So users won't be able to continue using secured data after logging out.
|
|
|
|
|
I am checking if the session is still alive however the page is still displayed when i press back button. But if i refresh the page it will redirect me out again.
|
|
|
|
|
samerh wrote: But if i refresh the page it will redirect me out again.
Yeah, this is enough. So no need of nasty JS to block back button.
|
|
|
|
|
ok but i am being bale to view the last page details the user was in before log out. Only when i hit refresh i am being redirected.
|
|
|
|
|
samerh wrote: Session.RemoveAll()
Always Use Session.Abandon() For Logout.
cheers,
Abhijit
|
|
|
|
|
why shouldnt you use xml scripting of page expired,session expires
or proper using of session ["value"]=null;
session.abandon();
this will help you to prevent your page after logout and also
**use this codesnippet in masterpage is usefull in security**.
bye
|
|
|
|
|
can anybody tell me how do i use this option or how does it work;
i am totaly confused in it.
i use the two pages login.aspx and home.aspx
i need to recover password by sending mail through the password recovery tool by using 'Forgot password' option..............
what's the best option for it.
using System.Net.Mail; or
Using system.web.mail;
and how does they work can you help.Or any other method you know.
please tell me.
i mean here is how could i send correct password on entering right user name to requested email address
from my site.
modified on Monday, November 3, 2008 1:57 AM
|
|
|
|
|
Alok sharma ji wrote: i am totaly confused in it.
I too confused in your question. What are you trying to do?
|
|
|
|
|
I think he just wants to know more about it thats why I gave him an article on it
Deliver yesterday, code today, think tomorrow.
"http://www.heuse.com/cphumor.htm"
|
|
|
|
|
This is a good tutorial on it:
Password Recovery
Any more probs post back
Deliver yesterday, code today, think tomorrow.
"http://www.heuse.com/cphumor.htm"
|
|
|
|
|
I want to open site with www like "http://www.codeproject.com"
because site is opning "http://codeproject.com"
if user not typed www then I want it will be by default
how can i resolve this issue plz any one help me
krishna veer singh
|
|
|
|
|
i think you can put a custom validator and change it accordingly..
Cheers!!
Brij
|
|
|
|
|
how can i use custom validator for that ?
sir u r getting my question
krishna veer singh
|
|
|
|
|
ASP.NET has nothing to do with this. When you create DSN names in the server, don't add the one without www . If you are using a shared hosting, you need to contact server provider for doing this.
|
|
|
|
|
Hi
I have coded an newsletter mailer which send e-mails to the address stored in databases. application working fine but all the mailers are delivered as spam and not going to inbox.
my news letter has nine images and a content inside it, i want to know whther there is any solution to get mail in inbox and not in SPAM folder.
please take a look at this news letter mailer application
_oSqlConn = New SqlConnection(ConfigurationManager.AppSettings("Test"))
_oSqlConn.Open()
_oSqlCmd = New SqlCommand("select cMail_Address from Mail_Tbl where bActive=1", _oSqlConn)
_oSqlCmd.CommandType = CommandType.Text
_oSqlAdpat.SelectCommand = _oSqlCmd
_oSqlAdpat.Fill(DT)
If DT.Rows.Count > 0 Then
For i As Integer = 0 To DT.Rows.Count - 1
mail.To.Add(DT.Rows(i).Item("cMail_Address"))
Next
mail.From = New MailAddress("sathimailin@gmail.com")
mail.Subject = "Test with Image Embed in Mail and Mail Ids from SQL Database"
'mail.BodyEncoding = System.Text.Encoding.GetEncoding("utf - 8")
Body = "<table cellpadding="0" cellspacing="0" width="100%" border="0">"
Body &= "Welcome to www.website.com!!<br><br>Image Embed."
'<br><img alt="ss" src="cid:imageId">"
Body &= "<tr bgcolor="#ffffff">"
Body &= "<td style="font-size:15px;color:#102C5E;padding-top:20px;padding-bottom:10px;" align="center"><img alt="" hspace="0" src="" cid:imageid="" align="middle" border="0" xmlns:cid="#unknown"><br> An Image Embed in a Page with ASP.NET/VB.NET/C#/SQL </br></img></td>"
Body &= "</tr>"
Body &= "</img></br></br></br></table>"
'htmlV = AlternateView.CreateAlternateViewFromString(Body, Nothing, "text/html")
Dim plainview As System.Net.Mail.AlternateView
plainview = System.Net.Mail.AlternateView.CreateAlternateViewFromString(System.Text.RegularExpressions.Regex.Replace(Body, " @<(.|\n)*?>", String.Empty), Nothing, "text/plain")
htmlV = System.Net.Mail.AlternateView.CreateAlternateViewFromString(Body, Nothing, "text/html")
imagelink = New LinkedResource(Server.MapPath(".") + "\pic.jpeg", "image/jpeg")
imagelink.ContentId = "imageId"
imagelink.TransferEncoding = System.Net.Mime.TransferEncoding.Base64
mail.AlternateViews.Add(plainview)
htmlV.LinkedResources.Add(imagelink)
mail.AlternateViews.Add(htmlV)
'smtp(configuration)
smtp.Host = "smtp.gmail.com"
mail.Priority = MailPriority.High
smtp.DeliveryMethod = SmtpDeliveryMethod.PickupDirectoryFromIis
smtp.Send(mail)
End If
|
|
|
|
|
You are using Gmail's SMTP server, but I can't see where you are authenticating the server?
|
|
|
|
|
There is nothing you can do in your code to stop your recipient's email configuration sending it to spam, it is controlled by the recipient not the sender - otherwise nobody would send spam
Bob
Ashfield Consultants Ltd
|
|
|
|
|
hello friends. i have to get a unique value of client. (for example harddisk serial number) how i can do that?
thanks.
viva la commune
|
|
|
|
|
use SessionID , it is unique for each client request .
cheers,
Abhijit
|
|
|
|
|
thank you but session is not a value of client. session is crated by iis.
viva la commune
|
|
|
|
|
Your Requirment was
kuyucakli wrote: anything a unique value of client?
So SessionID you can use. This is unique for each request that initiate.
kuyucakli wrote: session is not a value of client. session is crated by iis.
but you can get any client sessionID.
cheers,
Abhijit
|
|
|
|
|
yes i know. but session is closing a few minute later or when is browser restart or when is pc restart..
i want to get a fixed value of client. like hard disk serial number. because i will know user by this value. for example; if a user visited my home page before i will redirect user to other page. but i will not use cookie, session, ip address. i have to use a uniqe and fixed value of client.
viva la commune
|
|
|
|
|
kuyucakli wrote: but i will not use cookie, session, ip address. i have to use a uniqe and fixed value of client.
WHY? Using cookies is the obvious way to identify user has visited previously.
|
|
|
|