[Zope] expiring cookie

sathya sathya at zeomega.com
Thu May 6 13:13:15 EDT 2004

schandra at csee.wvu.edu wrote:
the back button loads from cache , you are not hitting the server. check 
the z2.log to see if back button is generating a request
> Hi,
> I am having some problems with the authentication logic.My application
> uses three roles--Student,Faculty and staff.I use my login page(cookie
> authentication) to collect the username and
> password and I use the LDAP directory  to authenticate.The authentication
> works fine but when I log out and hit the back button in the browser,I am
> still going to the secure page and not redirected to the login page.I
> check for roles in all pages.I think my way of expiring the cookie is not
> correct.
> For logout, I use the following statements for cookie expiration bu tit
> deosnt work. Can you see whats wrong?
> <dtml-call expr="RESPONSE.expireCookie('__ac',path='/')">
> <dtml-call expr="SESSION.invalidate()">
> Is rewriting the cookie data is the only way?If so ,how to do that?
> Thanks in advance,
> Srini
> _______________________________________________
> Zope maillist  -  Zope at zope.org
> http://mail.zope.org/mailman/listinfo/zope
> **   No cross posts or HTML encoding!  **
> (Related lists - 
>  http://mail.zope.org/mailman/listinfo/zope-announce
>  http://mail.zope.org/mailman/listinfo/zope-dev )

More information about the Zope mailing list