Logging out

Anon

Hello - I am having a problem with logging out of a secure section using a php include and cookies. The logout function follows:

<?php
setcookie("AUTHORIZER");
header("Location: $HTTP_REFERER");
echo "<head><meta http-equiv=\"Refresh\" content=\"0; url=http://www.website.org\"></head>";

The problem is you get logged out, but remain on the page you were when you logged out (consequently the login php include is called and you are asked for a username and password again...)

What I need is for the user who logs out to get re-directed to the home page... Why doesn't this refresh work, and how can I get around it??? Thanks.

Gordon

tanita

Ho Gordon,

I nearly had the same problem, although 'refresh' didn't work.
Certainly there are better solutions, thats why I'm courius about
other one. But maybe it hels you a little. In any case I solved like this:

In my script login.php I turn over a hidden button, which contains
the old HTTP_REFERER:
..
<input type="hidden" name="OLD_REFERER" value="<? print $HTTP_REFERER; ?>">
<input type="submit" name="submit" value="login">
..
By the time submitbutton with value 'login' is pressed, OLP_REFERER
will transfered to the next script.
Header("Location: http://nachtigall.she.de/ldap/changeEntries.php?OLD_REFERER=$OLD_REFERER");

Thats the first one, further I had problems with my session. The skript invoke itself, I have to
ensure the first entry and somehow the session has to be desroyed or unregistered (*1). For it
I have an new hiddenbutton for a flag.

Above described reacts when $flag == "on". But in case (*1):

if ($flag == "") {
if (session_is_registered($user)) {
session_unregister($user);
}

$authUID = urldecode($AuthUID);
$user = new People($authUID);
session_register( "user" );

...

Hope it helps

Tanja