Howt处理用户会话时，单击在ASP.Net浏览器前进或后退按钮？ [英] Howt to handle user's session when browser forward or back buttons are clicked in ASP.Net?

问题描述

在用户登录，在一个网站通过使用他的证件，如果他点击后退按钮的浏览器，并回归到登录页面进行身份验证，那么如何限制用户，当他试图访问与出提供其他页面再次凭据？

After user logs-in to a website by authenticating using his credentials, if he clicks back button in browser and comes back to log-in page, then how to restrict the user when he tries to visit other pages with out providing the credentials again?

推荐答案

每当用户来登录页面，除去身份验证cookie。这种方式，未经认证的cookie，用户将不能够去任何其它页面。

Whenever a user comes to the login page, remove the authentication cookie. This way, without the authentication cookie, the user won't be able to go to any other page.

但是，当用户点击返回按钮，你就必须写在登录页面的Page_Load方法如下code禁用缓存 -

But when the user clicks the back button, you'll have to write the following code in the login page's Page_Load method to disable caching -

Response.AddHeader("Expires", "-1");
Response.AddHeader("Cache-Control", "no-store, no-cache, must-revalidate");
Response.AddHeader("Pragma", "no-cache");

这篇关于Howt处理用户会话时，单击在ASP.Net浏览器前进或后退按钮？的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！