Hi!
I want to make the authorisation of a user, who is logged in, invalid.
The situation is following: The user has logged in:
String authorization = request.getHeader("Authorization");
if(authorization == null) {
response.setStatus(response.SC_UNAUTHORIZED);
response.setHeader("WWW-Authenticate", "BASIC realm=\"NCC-Admin\"");
return;
} else ...
He now sends me authorization data (Login+Password) back, which will be
checked further in my login routine. Everything is fine and he got a session
and my contents. Now I want to make a button "Logout", so he will have to
make his Login procedure again. But it looks like IE keeps the last
authorization data in cache as long as the window isn't closed. How may I
force IE to forget the data and the login dialog appears again?
ciao!
Kai
===========================================================================
To unsubscribe: mailto [EMAIL PROTECTED] with body: "signoff JSP-INTEREST".
For digest: mailto [EMAIL PROTECTED] with body: "set JSP-INTEREST DIGEST".
Some relevant FAQs on JSP/Servlets can be found at:
http://java.sun.com/products/jsp/faq.html
http://www.esperanto.org.nz/jsp/jspfaq.html
http://www.jguru.com/jguru/faq/faqpage.jsp?name=JSP
http://www.jguru.com/jguru/faq/faqpage.jsp?name=Servlets
