Re: [PHP] PHP and Apache authorization: how to logout. Help!
I read somewhere that if you type an underscore it clears authentication info. I haven't tried it and it seems obscure but its worth a try! LJ "Frederick L. Steinkopf" <[EMAIL PROTECTED]> wrote in message 018201c1ac67$c4d9c6a0$851a88ac@frederis">news:018201c1ac67$c4d9c6a0$851a88ac@frederis... > While I've never done this before, > couldn't you use a session and have session variables tied to the user name > and password and then have the logout function kill the session? > > - Original Message - > From: "Rodolfo Gonzalez" <[EMAIL PROTECTED]> > To: "Matthew Walker" <[EMAIL PROTECTED]> > Cc: "Aras Kucinskas" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Saturday, February 02, 2002 8:26 PM > Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! > > > > On Fri, 1 Feb 2002, Matthew Walker wrote: > > > Does anyone have the answer for this question? I need it too... > > > > As I learnt before, it's not possible without closing the user's browser. > > > > > My site is in directory which is protected with .htaccess file. > > > I want to develope a logout function, which can reset Apache > > > authorization. > > > > > > -- > > PHP General Mailing List (http://www.php.net/) > > To unsubscribe, visit: http://www.php.net/unsub.php > > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP and Apache authorization: how to logout. Help!
While I've never done this before, couldn't you use a session and have session variables tied to the user name and password and then have the logout function kill the session? - Original Message - From: "Rodolfo Gonzalez" <[EMAIL PROTECTED]> To: "Matthew Walker" <[EMAIL PROTECTED]> Cc: "Aras Kucinskas" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Saturday, February 02, 2002 8:26 PM Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! > On Fri, 1 Feb 2002, Matthew Walker wrote: > > Does anyone have the answer for this question? I need it too... > > As I learnt before, it's not possible without closing the user's browser. > > > My site is in directory which is protected with .htaccess file. > > I want to develope a logout function, which can reset Apache > > authorization. > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP and Apache authorization: how to logout. Help!
On Fri, 1 Feb 2002, Matthew Walker wrote: > Does anyone have the answer for this question? I need it too... As I learnt before, it's not possible without closing the user's browser. > My site is in directory which is protected with .htaccess file. > I want to develope a logout function, which can reset Apache > authorization. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP and Apache authorization: how to logout. Help!
At 03:41 PM 2/1/02 -0800, Lazor, Ed wrote: >Even with a javascript function opening a new window and closing the old? > >-Original Message- >From: Matthew Walker [mailto:[EMAIL PROTECTED]] >Sent: Friday, February 01, 2002 3:42 PM > >I've done some investigating on my own. There is no way to do this. >Period. It's not QUITE as impossible as this, but nearly. You can give the browser a new challenge, and hope that it will clear the old username/password information that it's memorizing for the session. But I have found that certain combinations in certain browsers can subvert any such techniques. Thus, only quitting the browser entirely will force the browser to forget the authentication information. HOWEVER, certain users with IE 5 on the Mac have reliably reported that even quitting the browser doesn't work for them, but they instead have to restart their machines. (The HTTP specification mentions nothing about logout functionality.) Thus, if logging out is important to your application, then using browser-based authentication is not an acceptable solution. You'll have to use session management and build your own login screen. (Or, of course, reuse an existing one from one of the many good public libraries.) - Ken [EMAIL PROTECTED] >-Original Message- >From: Aras Kucinskas [mailto:[EMAIL PROTECTED]] >Sent: Thursday, January 31, 2002 10:39 AM >To: [EMAIL PROTECTED] >Subject: [PHP] PHP and Apache authorization: how to logout. Help! > >My site is in directory which is protected with .htaccess file. >I want to develope a logout function, which can reset Apache >authorization. > >What to do? >HTTP header... >unset $PHP_AUTH_USER ... > >Any suggestions -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] PHP and Apache authorization: how to logout. Help!
The entire browser has to close down to clear the auth data. Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Lazor, Ed [mailto:[EMAIL PROTECTED]] Sent: Friday, February 01, 2002 4:41 PM To: Matthew Walker; Aras Kucinskas; [EMAIL PROTECTED] Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! Even with a javascript function opening a new window and closing the old? -Original Message- From: Matthew Walker [mailto:[EMAIL PROTECTED]] Sent: Friday, February 01, 2002 3:42 PM To: Aras Kucinskas; [EMAIL PROTECTED] Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! I've done some investigating on my own. There is no way to do this. Period. Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Matthew Walker Sent: Friday, February 01, 2002 3:37 PM To: Aras Kucinskas; [EMAIL PROTECTED] Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! Does anyone have the answer for this question? I need it too... Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Aras Kucinskas [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 31, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: [PHP] PHP and Apache authorization: how to logout. Help! My site is in directory which is protected with .htaccess file. I want to develope a logout function, which can reset Apache authorization. What to do? HTTP header... unset $PHP_AUTH_USER ... Any suggestions Sorry for my English :) Aras -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] This message is intended for the sole use of the individual and entity to whom it is addressed, and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If you are not the intended addressee, nor authorized to receive for the intended addressee, you are hereby notified that you may not use, copy, disclose or distribute to anyone the message or any information contained in the message. If you have received this message in error, please immediately advise the sender by reply email and delete the message. Thank you very much. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] PHP and Apache authorization: how to logout. Help!
Even with a javascript function opening a new window and closing the old? -Original Message- From: Matthew Walker [mailto:[EMAIL PROTECTED]] Sent: Friday, February 01, 2002 3:42 PM To: Aras Kucinskas; [EMAIL PROTECTED] Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! I've done some investigating on my own. There is no way to do this. Period. Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Matthew Walker Sent: Friday, February 01, 2002 3:37 PM To: Aras Kucinskas; [EMAIL PROTECTED] Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! Does anyone have the answer for this question? I need it too... Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Aras Kucinskas [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 31, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: [PHP] PHP and Apache authorization: how to logout. Help! My site is in directory which is protected with .htaccess file. I want to develope a logout function, which can reset Apache authorization. What to do? HTTP header... unset $PHP_AUTH_USER ... Any suggestions Sorry for my English :) Aras -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] This message is intended for the sole use of the individual and entity to whom it is addressed, and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If you are not the intended addressee, nor authorized to receive for the intended addressee, you are hereby notified that you may not use, copy, disclose or distribute to anyone the message or any information contained in the message. If you have received this message in error, please immediately advise the sender by reply email and delete the message. Thank you very much. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] PHP and Apache authorization: how to logout. Help!
I've done some investigating on my own. There is no way to do this. Period. Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Matthew Walker Sent: Friday, February 01, 2002 3:37 PM To: Aras Kucinskas; [EMAIL PROTECTED] Subject: RE: [PHP] PHP and Apache authorization: how to logout. Help! Does anyone have the answer for this question? I need it too... Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Aras Kucinskas [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 31, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: [PHP] PHP and Apache authorization: how to logout. Help! My site is in directory which is protected with .htaccess file. I want to develope a logout function, which can reset Apache authorization. What to do? HTTP header... unset $PHP_AUTH_USER ... Any suggestions Sorry for my English :) Aras -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
RE: [PHP] PHP and Apache authorization: how to logout. Help!
Does anyone have the answer for this question? I need it too... Matthew Walker Ecommerce Project Manager Mountain Top Herbs -Original Message- From: Aras Kucinskas [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 31, 2002 10:39 AM To: [EMAIL PROTECTED] Subject: [PHP] PHP and Apache authorization: how to logout. Help! My site is in directory which is protected with .htaccess file. I want to develope a logout function, which can reset Apache authorization. What to do? HTTP header... unset $PHP_AUTH_USER ... Any suggestions Sorry for my English :) Aras -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED] --- Incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.317 / Virus Database: 176 - Release Date: 1/21/2002 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]