Hi
I have recently begun to use sessions (PHP4) in a secure area of a website. I have some problems with what I think is a cache problem in MSIE.
My procedure is kind of this:
1) User logs in
2) The inputs are verified and if correct the session id is set and the user is being redirected by header(...);
3) From a main menu the user then can make choices, which sends him to other secure pages.
BUT if when the user presses "back" from any of those pages he comes to the login-page once again!!? The session is still valid!
My secure pages all include an authentication include-page which looks kind of like this:
session_start();
if(!session_is_registered("xx")){
header("Location: login.php");
exit;
}
//otherwise display the page from here on downwards
I have heard something of a bug in MSIE - does anyone know anything about this topic? What could I do to avoid this?
