Logout Script

login365

Hi,

I have a logout script, which is below. At present it lets users click back and view the page that they have logged out from. How can i prevent the users from clicking back?

<?php

session_start();

session_unset();

session_destroy();

header("Location:index.php?logout=true");

?>

Also is it possible to prevent image files and other files from being accessed directly from the address, when a user is not logged in?

Any help is appreciated

Mike

Kudose

You could restrict your 'private' images and directories with .htaccess and have your session variables as their PHP_AUTH_USER and PHP_AUTH_PASS.

Then all you have to do to log them out is flush the session and it will put .htaccess back in place and restrict them.