As for mine, I used to set the cookie for login user and redirect them to the appropriate page. I don't use the SSL. What I'm worrying is if there is any security hole....When user log out, I simply set the cookie to null value and redirect them with header location. Header location is the method I used for login and logout.... Should I redirect user after user is logged in?
Is any standard practice for the matters? Appreciate if you give some thoughts
[url=http://forums.devnetwork.net/viewtopic.php?t=30037]Forum Rules[/url] Section 1.1 wrote:11. Please use proper, complete spelling when posting in the forums. AOL Speak, leet speak and other abbreviated wording can confuse those that are trying to help you (or those that you are trying to help). Please keep in mind that there are many people from many countries that use our forums to read, post and learn. They do not always speak English as well as some of us, nor do they know these aberrant abbreviations. Therefore, use as few abbreviations as possible, especially when using such simple words.
Some examples of what not to do are ne1, any1 (anyone); u (you); ur (your or you're); 2 (to too); prolly (probably); afaik (as far as I know); etc.