[prev in list] [next in list] [prev in thread] [next in thread] 

List:       cgiapp
Subject:    Re: [cgiapp] Expire page
From:       Stelian Iancu <stelian.iancu () gmx ! net>
Date:       2002-12-03 14:33:05
[Download RAW message or body]

On Tue, 2002-12-03 at 14:56, Benjamin wrote:
> Hello,
> 
>
> I'm think I don't quite understand your problem. But here are my two 
> guesses:
>

Let me explain a little bit the situation. The first run mode is called
homepage. It just shows the main page of the app. There I have a
username, a password field and a login button. When the user presses the
Login button, i call another run mode, called login which authenticates
the user against a MySQL database. I am not using cgiapp_prerun at all.
Now, when the user presses the Logout button, I am just calling the
homepage run mode again, and it shows the main page, as expected. The
problem is that if the user presses the browser's Back button, he sees
the last page before he hit the Logout button. And I don't want that to
happen. So this is the problem, and I don't know how to solve it, mainly
because I don't know what exactly happens when the Back button is hit. I
think it takes the .html generated page from the cache. 

Can you please explain how can I use cgiapp_prerun to authenticate? Or
explain it's utility in a normal web app. In the docs, the only thing I
could find is that it can be used when sublassing CGI::App. I am so new
to this sort of stuff ( I mean CGI::App and Perl ). Or, at least, tell
me what M shoud I RTF. Are there any other gotchas or things I should
know about CGI::App and it's use? The main reason for asking this is
that I believe that CGI::App is a very good web framework and I intend
to use it a lot. 
 
> Anyway, if you are starting to do "serious"  web app development you 
> should take a look at the owasp (open web application security project) 
> site http://www.owasp.org/ and more specifically at the owasp guide 
> http://www.owasp.org/guide/
> 

Thank you, I will read it!

> have fun

Thanks! And sorry for this long post.

> 
> Benjamin
> 
> -- 
> -----BEGIN GEEK CODE BLOCK-----
> Version: 3.1
> GIT/P dx s: a? C(+++) L++ P+++ N++ w PS+ PE-(++) Y+ PGP
> t+ 5- X R@ !tv b+++ DI(+) D+ G e++(+++) UF++ h-- r@ y?
> ------END GEEK CODE BLOCK------
> 
-- 
Regards,
Stelian I.


[prev in list] [next in list] [prev in thread] [next in thread]