I have an HTML page with a form with 2 elements, name and password. When submitted, the form calls a perl script that validates the username and password against a file, updates a file called "currentser" and redirects them to the next page. This works fine.
On the next page, the current user details are retrieved by the next script and the web page is built using users full name, date, access level etc which have just been retrieved.
I have two test users, fred and john. If I log on as john with the correct username/password combination on the first run, the screen builds correctly and knows that I am user john.
If I then close the browser, log in as fred with the correct username/password combination the page is built with john's details again. If I click "refresh" it re-loads with fred's details. A bit of a security hole methinks.
If I get the username/password combination wrong at any point, I am re-directed to the "access denied" page, which works correctly.
I am using IE6 version 6.0.2600.0000co
I have enabled "Empty Temporary Internet Files When Browser Is Closed", I have disabled "Userdata Persistence", I have set history files to 0 days and also set the "Check or New Versions Of Pages" to be "Every Visit To The Page" and it still won't pick up the right data without a refresh.
Where else could it possibly be storing the information?
Any ideas, please?
Thanks in advance.