https://bz.apache.org/bugzilla/show_bug.cgi?id=62048
--- Comment #16 from Christopher Schultz <ch...@christopherschultz.net> --- (In reply to Mark Thomas from comment #15) > Something like that. > > Or do we show a 'log out' button vs a 'close browser to log out' message > depending on getAuthType() ? "Close the browser" is a non-starter for me. My browser runs basically constantly between software updates. I'm not going to restart my browser just to lot out of Tomcat's Manager application. > I remain concerned about the fragility of any solution. Whatever we do needs > testing on a wide range of browsers before it is committed. Agreed. I haven't found a browser yet where the "return a 401 response" technique doesn't work. I'm sorry I haven't found the time to test Marek's code, yet. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org