For security reason, I don't want some pages that accessed by a authorised user can alse be possibly viewed by another user with lower level access right when two users using same browser in same PC. To be more specific in my project, a user with lower access right will only allowed to see his own data, while a administrator can do much more thing. If the two kind of users use each own PC, then no problem will happen. The problem only happened is when after administror using the browser to do some work and then a lower user use the same brower. It is possible for the second user to type in URLs to see some pages that should not be allowed.
Do you think I should spend time on this problem which on usual situation is unlikely happened?
This post has been archived. It cannot be replied.