After successful login:
Code:
<%
Session("username") = "gvee"
%>
On every "secure" page
Code:
<%
If Session("username") = "" Then
Response.Redirect("denied.asp")
End If
%>
On log out:
Code:
<%
Session.Abandon
'OR
Session.Contents.RemoveAll()
'OR
Session("username") = ""
%>