My application has a logout link which will cleanly log out a user so he can log in again later. If he just closes his browser, the application thinks he is still logged in. I just wanted to make extra sure that I can't run any code when the user closes his browser which would automatically log him out - because closing the browser happens on the client and the server can't know about it. Is this correct? Has anyone devised a slick solution to this limitation? I guess the Logout link is too much trouble for the user to click, or maybe he's just forgetful...

Thanks.