防止用户在asp.net mvc中注销后返回

时间:2017-02-07 05:37:53

标签: asp.net-mvc caching browser-cache

我已经尝试了所有可能的方法来阻止用户在注销后返回。但都没有效果。我试过了 - 

Response.ClearHeaders();

Response.Cache.SetAllowResponseInBrowserHistory(false);
Response.Cache.SetCacheability(HttpCacheability.NoCache);
Response.Cache.SetNoStore();
Response.Cache.SetRevalidation(HttpCacheRevalidation.AllCach‌​es);

Response.AppendHeader("Cache-Control", "no-cache"); 
Response.AppendHeader("Cache-Control", "private"); 
Response.AppendHeader("Cache-Control", "no-store"); 
Response.AppendHeader("Cache-Control", "must-revalidate"); 
Response.AppendHeader("Cache-Control", "max-stale=0");  
Response.AppendHeader("Cache-Control", "post-check=0"); 
Response.AppendHeader("Cache-Control", "pre-check=0");  
Response.AppendHeader("Pragma", "no-cache"); 
Response.AppendHeader("Expires", "Mon, 26 Jul 2000 05:00:00 GMT"); 

Response.Cache.SetCacheability(HttpCacheability.NoCache);  
Response.Cache.AppendCacheExtension("no-store, must-revalidate");
Response.AppendHeader("Pragma", "no-cache"); 
Response.AppendHeader("Expires", "0");

我在chrome(v.56)上测试过。上述代码无法阻止用户在注销后返回。

任何想法??

2 个答案:

答案 0 :(得分:4)

转到Global.asax.cs文件并使用以下代码清除应用程序中的缓存(希望此帮助) - 

protected void Application_BeginRequest()
{
    Response.Cache.SetCacheability(HttpCacheability.NoCache);
    Response.Cache.SetExpires(DateTime.UtcNow.AddHours(-1));
    Response.Cache.SetNoStore();
}

答案 1 :(得分:1)

将此行代码粘贴到要阻止的控制器上方

[System.Web.Mvc.OutputCache(NoStore = true, Duration = 0, VaryByParam = "*")]


 [System.Web.Mvc.OutputCache(NoStore = true, Duration = 0, VaryByParam = "*")]
    public ActionResult Logout()
    {
        FormsAuthentication.SignOut();
        Session["Username"] = null;
        Session.RemoveAll();
        Session.Abandon();

        return RedirectToAction("Index", "Login");
    }
相关问题
最新问题