|
Nick
nick at dd.revealed.net
Fri Feb 11 13:02:21 EST 2005
In theory if you send a 401 when the person logs out, you will force the
browser to flush the credentials they previously supplied.
Nick
Chris Jackson wrote:
> I'm looking to a way of logging out a session putting the user back at
> the Apache authentication dialog box.
>
> What I've done so far is to create a URL that links to a logout
> publisher handler. The handler has:
>
> sess = Session(req, sessid, None, 36000, 0)
> sess.load()
> sess.invalidate()
> sess.delete()
> req.internal_redirect('/myurl/login')
>
> However when revisiting the login page, the browser still holds the
> user's information, but i'd want it to return the user to the actual
> apache authentication handler.
>
> ~= Chris =~
> _______________________________________________
> Mod_python mailing list
> Mod_python at modpython.org
> http://mailman.modpython.org/mailman/listinfo/mod_python
|