Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

CodeIgniter back button after logout

Tags:

html

php

caching

session

codeigniter

I'm trying to stop/disable the back button functionality of the browser when a user logs out of my CodeIgniter (PHP) app. But, I think the browser is caching the page so it becomes visible despite the session being destroyed from logout.

I know the session is dead because when the user tries to do anything (click any link etc) they are kicked out through the methods in my controller.

It's not ideal to have the back button working in this manner since the previous page contains confidential information.

Not a clue how to tackle this one, maybe a redirect page in between (but then the user could slam the back button really quick right?), help!

Thanks.

like image 553
Adam Waite Avatar asked May 02 '12 17:05

Adam Waite

3 Answers

I think this could help you out, it works for me.

CodeIgniter Framework version: 

$this->output->set_header('Last-Modified:'.gmdate('D, d M Y H:i:s').'GMT');
$this->output->set_header('Cache-Control: no-store, no-cache, must-revalidate');
$this->output->set_header('Cache-Control: post-check=0, pre-check=0',false);
$this->output->set_header('Pragma: no-cache');

PHP version:

header('Last-Modified:'.gmdate('D, d M Y H:i:s').'GMT');
header('Cache-Control: no-store, no-cache, must-revalidate');
header('Cache-Control: post-check=0, pre-check=0',false);
header('Pragma: no-cache');

if you are using PHP OOP put the above code in your constructor to initialize on your pages.

like image 151
surfsamson Avatar answered Sep 21 '22 08:09

surfsamson

Add this to prevent caching of the previous page:

header("cache-Control: no-store, no-cache, must-revalidate");
header("cache-Control: post-check=0, pre-check=0", false);
header("Pragma: no-cache");
header("Expires: Sat, 26 Jul 1997 05:00:00 GMT");
like image 24
dwilkins Avatar answered Sep 21 '22 08:09

dwilkins

My solution for this problem:

  1. Check that the cookie is set will with an if.
  2. Step parameters and call the login method of user model.
  3. Finally charge the corresponding views.

If the cookie is not set will redirected to the login page.

if(isset($_COOKIE['ci_session'])){ 
  $user= $this->security->xss_clean($this->input->post('user'));
  $pass= $this->security->xss_clean($this->input->post('pass'));

  $result = $usrLog->loguearUsuario($user, $pass);

  if($result == TRUE){
     $data = $this->session->set_userdata('logged_in', $sessArray);
     $this->load->view('pages/admin', $data);
  }

}else{
   header('Location: login'); 
}

I hope you learn! And sorry for my english! :-)

like image 44
Emily Avatar answered Sep 19 '22 08:09

Emily
Sign in to Comment

Related questions

PHP DOM XML - Create Multiple Namespace Attributes?
MVC: Model View Controller -- does the View call the Model?
How to convert a comma separated string of numbers to an array of integers?
Why does "exit" require parentheses?
How to read the query string in PHP and HTML?
Where are Magento static CMS blocks stored?
Convert latin1 to UTF8
Convert exponential number presented as string to a decimal
PHP Select a random lon/lat within a certain radius
how to format message body of email?
Storing database connection in a session variable [duplicate]
How to change name of uploaded file without changing extension
2d multidimensional array to 1d array in php [duplicate]
Selecting Random Result from MySQL
Check whether the URL scheme is HTTP or HTTPS
add line break in mobile sms
Why does my float store in MYSQL as .9999 when it's greater than 1?
Create POT file with Poedit
CodeIgniter Extending Multiple Controllers?
REST web services: Symfony 2 vs silex [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!