|
I was just reviewing my code and realised that it wasn't very secure... at login, the user ID is saved into a cookie and that ID is used on subsequent pages to identify the user (i.e. on the View/Modify my Details page). OK so I coded that late last night and wasn't thinking straight!
I was considering using a session variable - but if the user clicks the Remember Me check box and makes the authentication cookie presistant, the session variable won't be there next time they come back.
How do I go about doing this properly? (p.s. I'm using Forms authentication)
- Mina
__________________
Minaki Serinde MCP
"Wow, Linux is nearly on-par with Windows ME!"
Please login or register to view this content. Registration is FREE | Please login or register to view this content. Registration is FREE
|
