> How can I "logout" from a PHP based auth (with PHP_AUTH_USER and
> and appropriate headers sent at the beginning)?
> It seems like unset($PHP_AUTH_USER) does not wotk in this case...

unset() won't do anything because the *BROWSER* re-sends the
username/password for that Realm when it gets the headers requiring them.

This continues until the user quits the browser, *OR* you stop
authenticating for that Realm and start authenticating for another.

Thus, the way to "logout" is to maintain a dynamic unique dataset of
"Realms" and require authentication in a new Realm for any user that is
"logged out".

WARNING [EMAIL PROTECTED] address is an endangered species -- Use
Wanna help me out?  Like Music?  Buy a CD: http://l-i-e.com/artists.htm
Volunteer a little time: http://chatmusic.com/volunteer.htm

PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to