https://bz.apache.org/bugzilla/show_bug.cgi?id=62048
--- Comment #3 from Michael Osipov <1983-01...@gmx.net> --- (In reply to Mark Thomas from comment #1) > They use BASIC auth. You can't logout from BASIC auth. Why do you think so? I have swapped it for SPNEGO auth. > We could change the auth mechanism but then that creates issues for the > command line tools. Moreover, the CSRF filter creates a session for the user. It would make sense to have a logout to kill the session. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
