Caching and page access restrictions

nick 0

Jul 19 2004 4:26 PM

1.6k

Security dealing with page access restrictions is making me crazy. I have a private site requiring user and password logins but the computer is physically accesible by more than just that user. I have tested multiple browser for compatibility and they call cache the pages. Even after the user has logged out and i have done FormsAuthenticiation.SignOut() and Session.Abandon(). But the browser does not interact with the server when displaying a cached page. So another person could come along after they previous user has left and backup giving them a view of personal information. I have tried setting SetCacheability(HttpCacheability.NoCache) but this creates a side affect that when the real user is still logged in an tries to back up they will get a page expired error. I need to make sure that the real user and go forward and backward while still logged in and the unauthorized user from backing up to view someone elses info. Any ideas?

Next Recommended Forum

Datasets and Performance

Regarding Calander Sever Control

Leaderboard

View all

Deepak Tewatia

Baibhav Kumar

Yesterday's leader

View all

Deepak Tewatia

C#, Asp.net, DB, F#, AI, MVC

India

George Town (India)

Ghaziabad (India)

Upcoming Events

Suggested For You

Forum Statistics

Please welcome our newest member Randy Ortan.
2,380,565 users have contributed to 122,594 threads and 388,838
In the past 24 hours, we have 0 new threads, 0 new posts, and 0 new users.
In last week, the most popular thread is 'Re: latest version of csharp language'.