Cookie? Session? users on same PC
Posted: Tue Nov 28, 2006 10:12 pm
I'm writing a web-app (logbook) that is driving me nuts. I hope somebody here can shed some light on.
Here is a scenario of my problem:
User #1 logs in and makes an entry in the logbook. When finished, he does not logout, but leaves browser open.
User #2 sits down immediatly as User #1 gets up. Opens up another browser, logs in and makes his entry. He properly logs out and closes his browser out like a good security-minded employee.
PROBLEM:
When User #1 sits back down after User #2 gets done, and refreshes his screen, his login information changes from his login to User #2's login. The only way around this is to logoff User #2, close all browsers, and re-log back in.
The only thing I can think of is to have a timeout on the session. But this doesn't help much if the users leave multiple browsers windows open, even if they close out their logbook. Plus, users tend to not hit any kind of "logoff" button, which would properly terminate the session. Most just close the browser which should terminate the session, but if users have multiple browsers open at the same time, I believe the session remains active, even though the logbook was closed.
My QUESTION:
How do I enable multiple users, to login successfully, using the same computer, and keep them both seperated in the app at the same time?
Does any of this make sense? I hope somebody can help me.
Scott
Here is a scenario of my problem:
User #1 logs in and makes an entry in the logbook. When finished, he does not logout, but leaves browser open.
User #2 sits down immediatly as User #1 gets up. Opens up another browser, logs in and makes his entry. He properly logs out and closes his browser out like a good security-minded employee.
PROBLEM:
When User #1 sits back down after User #2 gets done, and refreshes his screen, his login information changes from his login to User #2's login. The only way around this is to logoff User #2, close all browsers, and re-log back in.
The only thing I can think of is to have a timeout on the session. But this doesn't help much if the users leave multiple browsers windows open, even if they close out their logbook. Plus, users tend to not hit any kind of "logoff" button, which would properly terminate the session. Most just close the browser which should terminate the session, but if users have multiple browsers open at the same time, I believe the session remains active, even though the logbook was closed.
My QUESTION:
How do I enable multiple users, to login successfully, using the same computer, and keep them both seperated in the app at the same time?
Does any of this make sense? I hope somebody can help me.
Scott