PC SOFT

GRUPOS DE DISCUSSÃO PROFISSIONAL
WINDEVWEBDEV e WINDEV Mobile

Inicio → WEBDEV 2024 → Security of pages/site
Security of pages/site
Iniciado por Issa, mai., 08 2017 3:16 PM - 1 resposta
Membro registado
20 mensagems
Popularité : +1 (1 vote)
Publicado em maio, 08 2017 - 3:16 PM
Hello everybody!

I have created I little site to be used by clients of a firm and by manager of this firm.
Depending on user profile they can see different pages.
Clients can see their requests and can send a new request from site (an e-mail) - it's request for a visit to their places without supplying secret info (banking card or payments).
The manager can see a graphic with results of firm (Turnover).
I use in site only Dynamic Webdev pages. I have a little problem : if someone will copy an address-page when a user is connected and he will try to see that page in a different browser (the turnover for the manager for example), that page can be displayed in another browser 10 min more, till the page is active in Webdev Aplication Server.

Can a SSL certificate to solve this problem? My chief (which is not programmer) thinks that it can.
Or which solution I have to adopt to solve correct this situation?

PS
I tried to solve this using cookies. When a user is connecting on site I create a cookie and on disconnecting I delete it. On opening of each page I check the cookie. It works "ok" if the user is disconnected normally. If the browser is closed without a normal disconnection I have a problem.
Thank you for help!

--
Issa Bej
Membro registado
27 mensagems
Publicado em junho, 03 2017 - 9:00 PM
Hi, I saw that you can prevent IP change... at least it cannot be used on another computer. Except if both are using the same NAT server to connect your web server...