Redirecting the User when the Session Expires

最新推荐文章于 2019-08-25 20:35:51 发布
最新推荐文章于 2019-08-25 20:35:51 发布 · 68 阅读 · 0
文章标签:

#ASP #Security #Cache #Access

本文介绍了一种通过在ASP页面中加入自动刷新功能来加强登录安全性的方法。该方法利用Response对象添加HTTP头部信息,实现浏览器在会话超时后自动重新验证用户身份的功能。

By Rich W.

I am building an intranet site that has different levels of security, and a current problem with the legacy software is that people spend time finding out information that they aren't supposed to have access to. The login security can be a problem if the session timeout is too long, but even then users can come by and see someone's computer screen if they don't close the browser window. I found a fix that automatically asks the users for the login and password if they just leave the browser open. In my include file that contains my login check, (this appears at the top of every asp page that requires the login security.) I added one line. Here is the file contents:

Response.AddHeader "Refresh",CStr(CInt(Session.Timeout + 1) * 60)
Response.AddHeader "cache-control", "private"
Response.AddHeader "Pragma","No-Cache"
Response.Buffer = TRUE
Response.Expires = 0
Response.ExpiresAbsolute = 0

If (Session("Authenticated") <> Session.SessionID) Then
	Session("RequestedURL") = "http://" & _
	    Request.ServerVariables("SERVER_NAME") & _
		Request.ServerVariables("SCRIPT_NAME")

	Temp = Request.ServerVariables("QUERY_STRING")
	If (Not(ISNull(Temp)) AND Temp <> "") Then
		Session("RequestedURL") = Session("RequestedURL") & _
		    "?" & Temp
	End If
	Response.Redirect("/login.asp")
End If

Line 1 addes a refresh tag that refreshes the page exactly 1 minute after the session timed out. This will cause the login page to appear and then redirect the user back to the page they were viewing.

Hope this helps someone,

Happy Programming!

iteye_3619
关注
NameNode is still loading. Redirecting to the Startup Progress page 问题解决
扛麻袋的少年的博客
04-08 2163
五:出现原因:   在我访问 2nn Web 界面,发现 moment() 函数原因导致内容无法显示。所以需要修改一下 dfs-dust.js 文件。 自我认知:   因为2nn是配置在 Hadoop203 节点,所以我只需要修改203节点即可。所以就只在203节点修改了。 报错咯:   错误代码:NameNode is still loading. Redirecting to the Startup Progress page 修改后:   修改后发现2nn Web界面能够正常显示,
The OAuth 2.0 Authorization Framework
weixin_30407099的博客
04-15 918
The OAuth 2.0 Authorization Framework Abstract The OAuth 2.0 authorization framework enables a third-party application to obtain limited access to an HTTP service, either on ...
RFC6749: The OAuth 2.0 Authorization Framework 原文
spawpaw的博客
08-25 3541
文章目录The OAuth 2.0 Authorization Framework1. Introduction1.1. Roles1.2. Protocol Flow1.3. Authorization Grant1.3.1. Authorization Code1.3.2. Implicit1.3.3. Resource Owner Password Credentials1.3...
AVsession Audio session
11-27 1633
Audio Session Audio Session Services   c语言接口 AVAudioSession Class Reference   object -c 接口 声音的协调者, 协调系统和应用之间的声音 处理。 根据不同的软件需求,设置不同的category An audio session is the i
The OAuth 2.0 Authorization Framework-摘自https://tools.ietf.org/html/rfc6749
weixin_34163741的博客
08-10 1003
                                                                              Internet Engineering Task Force (IETF) D. Hardt, Ed. Request for Comments: 6749 ...
RFC3261 SIP: Session Initiation Protocol
热门推荐
richardisused的专栏
08-28 2万+
Network Working Group                                       J. RosenbergRequest for Comments: 3261                                   dynamicsoftObsoletes: 2543                                         
Spring Security Config : HttpSecurity安全配置器 SessionManagementConfigurer
Details Inside Spring
06-23 5826
概述 介绍 作为一个配置HttpSecuritySecurityConfigurer,SessionManagementConfigurer作了如下配置工作 : 为HttpSecurity提供如下过滤器(Filter) SessionManagementFilter 使用者可对该过滤器所需属性进行设置 ConcurrentSessionFilter 仅在限定最大会话数量时创建该过滤...
How to redirect to login page after cookie expires in Angular JS?
jfkidear的专栏
09-01 6352
How to redirect to login page after cookie expires in Angular JS?  Posted on 2015-05-18 16:04:40 by iamtheDanger  Last Updated: Aug 24, 2015Views: 948Votes: 0 I have the following piece o
SIP参考大全
gnuhpc的专栏
03-25 1万+
Description:Protocol suite:TCP/IP.Protocol type:Application layer protocol.Multicast addresses:224.0.1.75 (all servers).Ports:5060 (SC
SIP RFC 关系图汇总--超全---part3
Jenny_yu1025的专栏
08-26 1630
SIP RFC 关系图汇总--超全---part3         Top p. 1 3261-32xx 33xx 34xx 35xx 36xx 37xx 38xx 39xx
The Art of Assembly Language Programming
12-20
The 80x86 MOV Instruction 4.8 - Some Final Comments on the MOV Instructions <br>4.9 Laboratory Exercises 4.9.1 The UCR Standard Library for 80x86 Assembly Language Programmers 4.9.2 ...
Replace the problematic import by redirecting that route to an existing page so TypeScript no longer tries to import the missing .vue file.
10-22
在 TypeScript 里,要通过把有问题的路由重定向到现有页面来替换有问题的导入,进而避免尝试导入缺失的 `.vue` 文件,可按以下步骤操作: ### 1. 路由配置 在路由配置里,对有问题的路由做重定向。...
AI Overview Implementing selective checkout with checkboxes on a cart page typically involves allowing users to select specific items in their cart for purchase, rather than requiring them to purchase all items. This functionality is not a standard feature in most e-commerce platforms and usually requires custom development or the use of specialized plugins/apps. General Approach: Modify the Cart Template: Add a checkbox next to each item in the cart. Ensure the checkbox is linked to the specific product or line item. Handle User Selections: Use JavaScript to detect changes in checkbox states (checked/unchecked). When a checkbox is selected or deselected, update the cart's subtotal and potentially the items that will be included in the checkout process. Adjust the Checkout Process: When the user proceeds to checkout, ensure that only the items corresponding to the selected checkboxes are passed to the order. This may involve modifying the platform's core checkout logic or using hooks/filters provided by the platform. Platform-Specific Considerations: WooCommerce (WordPress): Requires custom code in functions.php or a custom plugin to add checkboxes, manage selections, and modify the checkout process. You might use AJAX to update the cart dynamically as selections are made. Shopify: Involves modifying theme files (e.g., cart-template.liquid, theme.js) to add checkboxes and JavaScript to handle the logic. This often requires familiarity with Liquid (Shopify's templating language) and JavaScript. Other Platforms: The specific implementation will vary based on the platform's architecture and extensibility options. It may involve similar approaches of template modification and custom code. Important Notes: Complexity: Implementing selective checkout can be complex and may require advanced coding skills. User Experience: Carefully consider the user experience implications of selective checkout to ensure it is intuitive and does not cause confusion. Testing: Thoroughly test the functionality to ensure that selected items are correctly processed and that no loopholes exist (e.g., refreshing the page causing issues with selected items). I want to achieve this selective checkbox function in my cart page. Im using woocommerce and woodmart theme. Please advice on what to do
07-30
a) When the user clicks "Checkout Selected", we store the current cart in a session variable (as an array of cart contents). b) Then, we remove the unselected items and redirect to checkout. c) On ...
基于微信小程序平台开发的集家庭日常收支精细化记录多成员协同管理与智能财务分析于一体的云端家庭财务管理系统_微信小程序开发前端界面设计后端数据逻辑处理云数据库存储用户权限管.zip
12-04
基于微信小程序平台开发的集家庭日常收支精细化记录多成员协同管理与智能财务分析于一体的云端家庭财务管理系统_微信小程序开发前端界面设计后端数据逻辑处理云数据库存储用户权限管.zip
CursorSetup-x64-2.1.47.exe
最新发布
12-04
CursorSetup-x64-2.1.47.exe
动态覆盖的分布式策略,具有有限感知能力.zip
12-04
1.版本:matlab2014a/2019b/2024b 2.附赠案例数据可直接运行。 3.代码特点:参数化编程、参数可方便更改、代码编程思路清晰、注释明细。 4.适用对象:计算机,电子信息工程、数学等专业的大学生课程设计、期末大作业和毕业设计。
(55页PPT)智慧农业行业解决方案.pptx
12-04
(55页PPT)智慧农业行业解决方案.pptx
基于双目标 UCB 控制启发式算法的主动磁悬浮轴承 PID 隐式模型优化方法-基准函数测试(Matlab代码实现)
12-04
内容概要:本文提出了一种基于双目标UCB控制启发式算法的主动磁悬浮轴承PID隐式模型优化方法,并通过基准函数测试验证其有效性。该方法结合了多目标优化与启发式搜索策略,旨在提升主动磁悬浮轴承控制系统中PID参数整定的精度与稳定性,利用Matlab进行仿真代码实现,展示了在基于双目标 UCB 控制启发式算法的主动磁悬浮轴承 PID 隐式模型优化方法——基准函数测试(Matlab代码实现)复杂非线性系统建模与优化方面的应用潜力。; 适合人群:具备一定控制理论基础和Matlab编程能力的高校研究生、科研人员及从事自动化、机械电子工程等领域研发工作的技术人员。; 使用场景及目标:①用于主动磁悬浮轴承系统的高性能控制设计;②为PID控制器参数优化提供基于双目标UCB启发式算法的新思路;③适用于需要高精度、强鲁棒性控制的工业场景,如高速旋转机械、精密制造装备等。; 阅读建议:建议读者结合Matlab代码深入理解算法实现细节,重点关注双目标优化机制与UCB启发式策略的融合方式,并可通过替换不同基准函数进行扩展实验,进一步掌握其在实际控制系统优化中的调参技巧与适应性分析方法。
InvalidOperationException: UseShellExecute must be false when redirecting I/O.
05-27
这条错误信息表明在使用Process类执行外部程序时,使用了重定向输入输出的方式,并且同时将UseShellExecute属性设置为了true。然而,这两个选项是互斥的,不能同时使用。如果想要重定向输入输出,则必须将...
评论
成就一亿技术人!
拼手气红包6.0元
还能输入1000个字符
 
红包 添加红包
表情包 插入表情
表情包 代码片
 条评论被折叠 查看
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值