Login security

I’ve tried all of the log-in generators now, I think. Each has its own
problems… I think I’ll be writing my own, or adapting the ‘login
generator’, which is the best as far as I can tell, but has the least
features.

A problem they all have is with browser caching after log-out. If I log
out, I can hit ‘back’ and see all the protected information… I can’t
change anything, but it’s still a problem.

Who knows a clean way to get around it? Javascript methods can be
circumvented and using posts instead of gets on the links is klunky…
But I’ve seen it done cleanly on banking sites.

Any help much appreciated.

Thanks!

This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.

| Privacy Policy | Terms of Service | Remote Ruby Jobs