Re: How to avoid duplicate login ?
Tuesday, April 24, 2001 11:00 PM
Hi your idea works if the user logouts explicitly.If he closed the browser accidentally it gives the problem to the user.
So try this
when user logs in,check his name in the session context.If his login is not available mantain his login in the session.If user re logins with out closing his session(Logout) redirect the forgot password page to client for example.If he able to give correct answer for the question , then invalidate the previous session and start the new session for him else through him out of site