in reply to Loging a user out with CGI and Cookies?
Well, I'm assuming that your not simply checking for the existence of a cookie with your CGI, but rather, you are looking for some specific verifier tht the cookie holds. Why not just recode your script to return an error page if the cookie holds an invalid verifier?
To clarify: Use a session-based system. When a user logs in, write them a cookie with the session ID. At that same time, write the session ID to a local file. When the user is logged out, erase the session ID from the file and if they try to return, their cookie will be checked. When the file is checked for the session ID that their cookie holds, the script won't find anything and can then tell the user to login again or buzzoff.
|