Reply to Bulletproof POST remove

Your name:

Reply:


Posted by Andy Pieters on 04/11/05 19:48

Hi all

I noticed some sites are able to remove POST data 100% of the time. Even if
the user presses the back button there is no more POST data pressent.

I would like to achieve the same thing and currently I use a location header
to transfer the user to the same page.

Like

check post
do action
header('Location: $thispage');
die();

But then when the user presses the back button they can still retransmit the
action.

I tried playing with the MUST-REVALIDATE, pragma-nocache header and stuff but
it doesn't seem to work. Also I notice that on some sites, when I press the
back button, there is a white page that sais "Your session has expired".

It should be noticed that I do not use sessions.

It should be like POST-once, after that there should be no more remnants of
it.


With kind regards

Andy


--
Registered Linux User Number 379093
-- ---BEGIN GEEK CODE BLOCK-----
Version: 3.12
GAT/O/CM d- s:+ a- C++++ UL++++ P+ L+++ E--- W+++ N++ o+ K w--- O+++ M- V
PS+ PE++ Y+ PGP+++ t+ 5-- X R !tv b DI+++ D++ G e-- h+ r--- y+
-- ---END GEEK CODE BLOCK------

Check out these few php utilities that I released
under the GPL2 and that are meant for use with a
php cli binary:

http://www.vlaamse-kern.com/sas/
--

--

[Back to original message]


Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация