Is it a good practice if every time when a logged-in user refreshes or re-enters the site, it will check from the database if that account still exists or matches from the database? Would that affect the performance of the site?
What I wanted to do is that for every activity that a logged-in user do (even navigating pages that has authentication), it will re-authenticate the account if the credentials (such as username and password) still matches from the database. What would be the best solution to address this kind of issue?
Aucun commentaire:
Enregistrer un commentaire