> How can I "logout" from a PHP based auth (with PHP_AUTH_USER and
PHP_AUTH_PW
> and appropriate headers sent at the beginning)?
> It seems like unset($PHP_AUTH_USER) does not wotk in this case...
unset() won't do anything because the *BROWSER* re-sends the
username/password for that Realm when it gets the headers requiring them.
This continues until the user quits the browser, *OR* you stop
authenticating for that Realm and start authenticating for another.
Thus, the way to "logout" is to maintain a dynamic unique dataset of
"Realms" and require authentication in a new Realm for any user that is
"logged out".
--
WARNING [EMAIL PROTECTED] address is an endangered species -- Use
[EMAIL PROTECTED]
Wanna help me out? Like Music? Buy a CD: http://l-i-e.com/artists.htm
Volunteer a little time: http://chatmusic.com/volunteer.htm
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
