logout #19
Comments
|
HTTP Basic Authentication doesn’t have the concept of sessions: a client
must supply their credentials on every request.
If you want session-based authentication I would recommend a more robust
approach with database backed passwords and cookie or token sessions.
…On Tue, Oct 31, 2017 at 11:41 AM Craig Wickesser ***@***.***> wrote:
How might I logout a user?
—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub
<#19>, or mute the thread
<https://github.com/notifications/unsubscribe-auth/AABIcHVXVIykyPK3P0CvWyL2w_topP4dks5sx2nAgaJpZM4QNPA2>
.
|
|
So does the browser cache something? When I access the site with basic auth, the first time I enter username/password, then it no longer prompts until I clear browser cache or use a "private" browser window. |
|
Yes, the browser caches it as a convenience, but the server has no control
over that.
…On Tue, Oct 31, 2017 at 6:23 PM Craig Wickesser ***@***.***> wrote:
So does the browser cache something? When I access the site with basic
auth, the first time I enter username/password, then it no longer prompts
until I clear browser cache or use a "private" browser window.
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<#19 (comment)>, or mute
the thread
<https://github.com/notifications/unsubscribe-auth/AABIcK-rIt2-uHD-0bKxp8XNZRwg-qrzks5sx8gAgaJpZM4QNPA2>
.
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
How might I logout a user?
The text was updated successfully, but these errors were encountered: