+ 1
How can one design a php logout page that prevents browser from logging in using cache?
Most logout pages I've been searching on the web simply destroys user sessions and redirect the user back to the login page. If the user happens to click the 'go back' button on their browser to the authentication php page, the browser simply asks the user to reload the page and submit the cached data thus re-logging the user without prompting him/her for the credentials. How can this be prevented?
1 Antwort
+ 1
by also sending cache-control header
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Cache-Control
edit: useful link
https://stackoverflow.com/questions/4480304/how-to-set-http-headers-for-cache-control#4480318