Last post Jun 27, 2014 04:37 AM by sapator
Jun 26, 2014 08:36 AM|sapator|LINK
I was logging a user with WCF and when i sign him out:
i could still go to a page that i had it as [authorize] in MVC.
What i did and is currently working is this:
So i have set the Authentication cookie NOT to be persistent and then i am signing out the user. I am wondering if this the way to go or the is an alternative
Jun 26, 2014 08:43 AM|Ashim Chatterjee|LINK
Its the browser cache which is letting you see the previous accessed page.
Jun 26, 2014 06:14 PM|sapator|LINK
Maybe, maybe not. Because the above implementation works and i don't think that a log out could keep the original page on secured [authorize], else i could just use the browser to navigate to site that i have loged out a few days ago.
But again i am not very familiar with MVC so maybe [authorize] does not work as it supposed to. But if it is the cache then that would be a problem for the entire MVC becuase clearing the cache on a browser should be advisable or forced to.
Jun 26, 2014 10:03 PM|Ashim Chatterjee|LINK
Acutally i am not getting what is the issue here ??
if you want to secure the WCF Service you can go through this reference:
Jun 27, 2014 04:37 AM|sapator|LINK
No exactly. I want to secure the web pages of MVC but the reference is also interesting.