Announcement

Collapse
No announcement yet.

Re-post form data

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Re-post form data

    I've been totally stumped on this one.

    I created a login form that uses POST requests so passwords won't be sent in the url GET string.

    Later the user can log out by pressing the "Log Out" button.

    However, if later on someone else pushes the "Back" button all the way till the page right after the login page and click "Refresh", the browser always asks "do you want to re-post the form data"?

    When the user clicks yes, the username/password gets re-sent to the server again and now an unauthorized user has just gained access.

    With Hotmail and vB, though, I don't see that happening. When I log into the admin I can't re-post the data. How is this done? Is there a trick to it all?



widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
Working...
X