Send a 'HTTP/1.0 401 Unauthorized' header.
This will flush the browser and force it to ask the user for
username/password again.
Not the most secure way, but it works. Try tying it to a 'logoff'
button.
On 7 Apr 00, at 22:51, Doug Poulin wrote:
> We are running a brand new server using Red Hat Linux 6.1 and Apache with
> SSL. Everything is up and appears to be working correctly. The problem I
> can't seem to find an answer to is, how do I log a user off?
>
> When our secure application starts up you go through an authentication
> process and the application starts up in a new (browser) window. When you
> close the application window you go back to the original window. If you
> click on the application start button you get logged right in. No more
> authentication (userid/password) form. How do we get it so that they have
> to re-log in everytime a user connects to our server?
>
> I have searched the archives and everywhere else I can think of but can't
> find any info. It has to be something simple but what is it?
>
> Doug Poulin
> ______________________________________________________
> Get Your Private, Free Email at http://www.hotmail.com
>
> ______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
