i new laravel 5 , trying make simple authentication page. problem can logout after click logout link if click button of browser, still able see content of page should not seen respect auth middleware process. read can prevent disabling caching don't think best way how can make in better way ? logout route is
route::get('logout', array('uses' => 'logincontroller@logout')); logout function is:
public function logout() { auth::logout(); // logout user session::flush(); redirect::back(); return redirect::to('pages/login'); //redirect login }
when user clicks button they're not logged in, browser rendering has cached previous page views. user won't able navigate or interact requires them logged in because, application on server, they're not authenticated.
when user clicks back button have no control on it doesn't make request server.
using button, content they'll able view have visited whilst logged in. if try access new, they'll make new request application, middleware trigger , redirect them login page.
i guess if wanted stop behavior use javascript , such send ajax request , check if user logged in way, quite useless security point of view.
Comments
Post a Comment