stackoom
  简体   繁体   中英

CodeIgniter Flexi Auth - immediately redirect user when login expires

 原文  2015-02-11 02:26:42       javascript/ php/ codeigniter/ authentication

Question

Using the CodeIgniter Flexi Auth library, how can I, when the user session expires, immediately redirect the user to the login in page (with a message saying: "Your login has expired, please login again") instead of that only happening on page load.

I am thinking that I will need to user JavaScript and a timed function to check if the user is still logged in every couple of seconds. But how can I do that using JavaScript?

1 answers

solution1
 0  2015-03-08 23:07:32

The session expiry is information which is maintained on the server. Unless you use Server-sent events , the only way to initiate the redirect will be through client action.

If you are using jQuery, and want to set up the system you described, then you can set up a loop to ping the server as follows: 

var ping_timeout = 120000; // 2 Minute interval

function checkSession() {
    $.get('/session/check/URL?t=' + Math.random(), {}, function(response) {
         // ... interpret the server response
         if (session_active) {  // Still active so check again later
             setTimeout(checkSession, ping_timeout);
         }
         else {
             window.location = '/login/url';
         } 
    });
}

setTimeout(checkSession, ping_timeout);

The t parameter is set to a random value to avoid the browser cacheing the response.

A problem with this scheme is that your server will be hit by these requests by every user every ping_timeout milliseconds. Realizing that the server knows when the session is expected to expire, we can modify the logic so that instead of simply answering true or false , the server can tell the client to check again when the server thinks the session will have expired.

Implementing this simply requires changing the logic so that the server responds with the number of milliseconds until expiry. The inner function will then be something like: 

function processResponse(response) {
    var session_expiry = parseInt(response);
    if (session_expiry > 0) {
        setTimeout(checkSession, session_expiry);
    }
    else {
        window.location = '/login/url';
    }
}

Now, in the ideal case there would only be two AJAX requests per session:

  1. get the expiry time
  2. to check whether the session has really expired and then make the user log in again

We do a check before renewing the session because a different AJAX request or other server-side event might have extended this, depending on your application logic. We can reduce this to only one request, if when the page is loaded, the expected session expiry time is loaded along with it in a hidden input field or something. Of course there is plenty of other code you'll have to put in for errors.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Is there a way to do a login redirect immediately when the SPA is accessed? Firebase auth - Login and then redirect to app - How to fetch user Redirect to login page when user is logout in Vue How do you redirect a user to a new page when a JavaScript timer expires? AngularJS: How to logout when login cookie expires How to redirect user to another page when logged into Firebase Auth in javascript? How to make entire page redirect to login after session expires in mvc? How to redirect to login page after cookie expires in Angular JS? How can we maintain user logged in when access token expires and we need to login again to continue as normal user redirect user to login page
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM