you need to destroy the session completely to start a new browsing session.
to maintain the users logged in state, you will need to store the user sessions into application variables, then destroy the session and reset the user session variables
take a look at your login page. Double click the authenticate user server behavior, and go to the third page. Make note of all of the session varaibles that are set here.
now on the success page use the following code:
<?php
// Initialize the session.
// If you are using session_name("something"), don't forget it now!
@session_start();
//store user sessions - create a application variable for each user session variable from the login page
$userID = $_SESSION['userID'];
//add more application variables if you need to
// Unset all of the session variables.
$_SESSION = array();
// If it's desired to kill the session, also delete the session cookie.
// Note: This will destroy the session, and not just the session data!
if (ini_get("session.use_cookies")) {
$params = session_get_cookie_params();
@setcookie(session_name(), '', time() - 42000,
$params["path"], $params["domain"],
$params["secure"], $params["httponly"]
);
}
// Finally, destroy the session.
session_destroy();
@session_regenerate_id();
//restore the users session variables
$_SESSION['userID'] = $userID;
?>
make sure to use the correct sesssion names in the store user session section