You created an ASP.NET site with Windows Authentication. Your users like to bookmark various pages, but you do not want them to bookmark a data entry page.
This madness can be stopped by checking if the session is new, and if so redirect the user to the default page.
First create a Master Page base class and make your master pages inherit this class. The response.buffer code is stop caching the page, but that is not related to this example of stopping users from book marking pages. Take a look a the PageSetup() method.
The PageSetup() method will redirect the user to Default.aspx on a new session. Also, if you do not want this to be the case during development there is a config setting that can be set to bypass this feature.
protected override void OnLoad(EventArgs e)
//Expire the page to stop the back and forward button usage.
Response.Buffer = true;
Response.ExpiresAbsolute = DateTime.Now.AddHours(-1);
Response.Expires = 0;
Response.CacheControl = "no-cache";
if (!Page.IsPostBack) PageSetup();
/// Redirects user to default on new sessions. This only applies to users testing with the URL.
/// There is now security check here since it is handled outside of this site.
private void PageSetup()
string URL = Context.Request.Url.ToString().ToLower();
if (URL.Contains("anonymous/")) return;
if (Context.Session != null)
if (!URL.ToLower().Contains("default.aspx")) Response.Redirect("default.aspx");