[Zope] Cookies for banishing users

Russell Hires rhires@earthlink.net
Tue, 3 Sep 2002 07:50:52 -0400


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Do you know for sure that the cookie expires? And if so, does the page check 
for the cookie to be valid (unexpired?) in order to perform its action?

Russell
On Tuesday 03 September 2002 01:56 am, you wrote:
> Dieter Maurer wrote:
> >Chetan Kumar writes:
> > > ...
> > > 6. The user logs out (The cookie should expire here)
> >
> >You know the "expireCookie" method of the response object?
>
> Yes. I have used this.
> However, the problem is elsewhere. The users can just click
> "reload" and the python scripts performs its action !! I can
> stop the python script from behaving in this manner in a
> more explicit way, but I would expect that once the cookie
> is expired the users should not be able to do anything without
> login.
> Regards,
> Chetan
>
>
>
> _______________________________________________
> Zope maillist  -  Zope@zope.org
> http://lists.zope.org/mailman/listinfo/zope
> **   No cross posts or HTML encoding!  **
> (Related lists -
>  http://lists.zope.org/mailman/listinfo/zope-announce
>  http://lists.zope.org/mailman/listinfo/zope-dev )

- -- 
Linux -- the OS for the Renaissance Man 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE9dKIcAqKGrvVshJQRAjUwAKDzP5WdxSSMbfEOrggeACSxJ9yEUgCfYIvf
F0SCa++wASibOgEiQDS6/n8=
=hiKI
-----END PGP SIGNATURE-----