On Tue, 2002-12-03 at 14:56, Benjamin wrote: > Hello, > > > I'm think I don't quite understand your problem. But here are my two > guesses: > Let me explain a little bit the situation. The first run mode is called homepage. It just shows the main page of the app. There I have a username, a password field and a login button. When the user presses the Login button, i call another run mode, called login which authenticates the user against a MySQL database. I am not using cgiapp_prerun at all. Now, when the user presses the Logout button, I am just calling the homepage run mode again, and it shows the main page, as expected. The problem is that if the user presses the browser's Back button, he sees the last page before he hit the Logout button. And I don't want that to happen. So this is the problem, and I don't know how to solve it, mainly because I don't know what exactly happens when the Back button is hit. I think it takes the .html generated page from the cache. Can you please explain how can I use cgiapp_prerun to authenticate? Or explain it's utility in a normal web app. In the docs, the only thing I could find is that it can be used when sublassing CGI::App. I am so new to this sort of stuff ( I mean CGI::App and Perl ). Or, at least, tell me what M shoud I RTF. Are there any other gotchas or things I should know about CGI::App and it's use? The main reason for asking this is that I believe that CGI::App is a very good web framework and I intend to use it a lot. > Anyway, if you are starting to do "serious" web app development you > should take a look at the owasp (open web application security project) > site http://www.owasp.org/ and more specifically at the owasp guide > http://www.owasp.org/guide/ > Thank you, I will read it! > have fun Thanks! And sorry for this long post. > > Benjamin > > -- > -----BEGIN GEEK CODE BLOCK----- > Version: 3.1 > GIT/P dx s: a? C(+++) L++ P+++ N++ w PS+ PE-(++) Y+ PGP > t+ 5- X R@ !tv b+++ DI(+) D+ G e++(+++) UF++ h-- r@ y? > ------END GEEK CODE BLOCK------ > -- Regards, Stelian I. --------------------------------------------------------------------- Web Archive: http://www.mail-archive.com/suppressed/ To unsubscribe, e-mail: suppressed For additional commands, e-mail: suppressed
Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.