I'd like to have a go at implementing Auth expiry. http://bugzilla.mozilla.org/show_bug.cgi?id=55181 The Zope folks particularly would find this useful. The fine-grained-ness of the implementation will depend on how complex it is to implement. The simple version would be a menu item which called ClearAll() on the nsHTTPAuthCache - which I assume is a singleton. A more complex version might, in response to about:logins , present a list of all the different sorts of auth (HTTP, FTP etc.) with little login buttons, and allow links of the form about:logins?op=logout&domain=foo.com&realm=bar to be clicked in the browser window. So, what I'm after is pointers to documentation - on our code in this area and on HTTP basic auth - and 30-second brain dump implementation ideas from the Necko crew. Why is the nsHTTPAuthCache not scriptable, by the way? Gerv -- People killed in WTC tragedy (approx.): 5,000 People who die every day of starvation: 24,000 Each of those deaths is more preventable than one caused by a terrorist. So when does the Western World declare war on hunger, disease and poverty?
