redirect back button to login page?

beckjo1

I have set up the website so when a certain amount of time goes by they are sent to a logout page which gives them the option of continuing the session or logging out. On this logout page I would like to make it so that if someone uses the back button rather than clicking yes or no they are logged out and directed to the login page. How can I accomplish this?
My logout script is:

<?
session_start();
if(!isset($_REQUEST['logmeout'])){
echo "<center>Are you sure you want to logout?</center> ";
echo "<center><a href=logout.php?logmeout>Yes</a> | <a href=javascript:history.back()>No</a>";
} else {
session_destroy();
if(!session_is_registered('first_name')){
echo "<center>You are now logged out!</center> ";
echo "<center>Login:</center> ";
include 'login_form.html';
}
}
?>

khjart

Wouldn't that be the same as clicking no?
Going back in the browser does the same as your javascript, if I'm not totally mistaken.

djumaka

Hi there!

Well, it is better, I think that the user is asked again his / her password as the Yahoo system does. Thus you'll protect the personal information from being viewed by unouthorised persons.

Bus since you've made it like that here's my Idea:

You just destroy the session before showing the form. Thus the user will be sent to ligin when click on "back". When he clicks on the yes button, however the name from the last session (that was just demolished) is passed by GET method and a new session is created for the user with the name added, serving him another PERIOD of time to be able to browse through the site.

beckjo1

djumaka
Can you please tell me how to write this to work your way? It surely does sound like the better way