authenication and session are different. authenication is who the user is.
session is a way to attach server state information to a browser session.
they are indepentant of each other and neither requires the other.
so session abandon frees the session data only.
-- bruce (sqlwork.com)
session abandon, clears the session
"ad" <fl****@wfes.tcc.edu.tw> wrote in message
news:O$**************@TK2MSFTNGP12.phx.gbl...
Thanks,
Your are correct!
SignOut() really can logout a user!
What about Session.Abadon()?
What dose it can do for us?
"Emil Christopher Melar" <emil@no_spam_arpanet.no>
???????:%2****************@TK2MSFTNGP12.phx.gbl... ad wrote: I use the Login controls of Asp.net 2.0 in my program.
I want to logout a user by program, I try Session.Abandon() for this.
But I found that the user is the same after I execute Session.Abandon().
I thought that Session.Abandon() can break the connection of current
user, but I fail
How can I logout a user by program?
You would rather invoke
System.Web.Security.FormsAuthentication.SignOut().
Forms authentication uses cookies. This method will remove the cookie
from the browser.
I have barely touched ASP.NET 2.0 but this method is supported in both
framework 1.0, 1.1 and 2.0.
Correct me if I am wrong!
--
Emil Christopher Melar