Hi I just asked this question yesterday. Search the archive for "Logout with basic autorization".
Mr Craig R. McClanahan responded as follows: >The problem is that when you are using >BASIC authentication, the browser sends the credentials on every request, >and I don't know of any way to tell it to stop doing so. >If you use form-based login, invalidating the session is all that is >required to log the user off. We are currently working through this issue. I have posted a message asking if we implement FORM-based authentication will we lose the ability to use web folders. Good luck--I'll watch for your emails. Kevin ----- Original Message ----- From: "Steve G" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, November 15, 2001 9:25 AM Subject: session and authentication issues > I'm trying to use Basic authentication and session variables as a way of > protecting my pages in all aspects. One problem arises when the user logs in > and then they hit the back button on the browser and try logging in again; > the old session variable is there but in the end it creates a new one? I > don't understand why this is happening. > > My other problem is that the code is returning a null value for > req.getAuthType......y would this occur? > > Steve G > Software Engineer > > > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp > > > -- > To unsubscribe: <mailto:[EMAIL PROTECTED]> > For additional commands: <mailto:[EMAIL PROTECTED]> > Troubles with the list: <mailto:[EMAIL PROTECTED]> -- To unsubscribe: <mailto:[EMAIL PROTECTED]> For additional commands: <mailto:[EMAIL PROTECTED]> Troubles with the list: <mailto:[EMAIL PROTECTED]>