[Zope-dev] De-Authentication / Logout

[Andrew Snare]

--pgp-sign-Multipart_Sat_Mar_13_15:06:05_1999-1
Content-Type: text/plain; charset=US-ASCII

>>>>> "Roger" == Roger Espinosa <roger@umich.edu> writes:

  Roger> At 4:40 PM -0500 3/12/99, Jason Spisak wrote:
  >> Zope-misters
  >> 
  >> Is there a setUser type method for AUTHENTICATED_USER? I have
  >> tried everything, and there isn't any docs.  I am trying to have
  >> a user logout without having to quit Netscape.  Any thoughts?  --

  Roger> It's always been my impression that unless Zope can be fitted
  Roger> with a cookie-based-authentication system (vs. the current
  Roger> basic-auth), there's *no* way to force a "logout" because of
  Roger> the way the *browsers* handle basic-auth.

Generally, the workaround/kludge is to change the authentication realm
to something different, since most browsers seem to only remember
authentication information for the most recent authentication realm
(if I recall correctly).

Also note that lynx gets it right since you can press _ to make it
forget all known authentication information.

 - Andrew
-- 
#!/usr/bin/env python
print(lambda s:s+"("+`s`+")")\
('#!/usr/bin/env python\012print(lambda s:s+"("+`s`+")")\\\012')
print(lambda x:x%`x`)('print(lambda x:x%%`x`)(%s)')

--pgp-sign-Multipart_Sat_Mar_13_15:06:05_1999-1
Content-Type: application/pgp-signature
Content-Transfer-Encoding: 7bit

-----BEGIN PGP MESSAGE-----
Version: 2.6.3i
Comment: If you don't know what this is, you can safely ignore it.

iQCVAwUBNunkLz9oumhqYnjxAQFp4wQAwz0tZoXNPEvJ8DzA8Pv3ssr24nlvwiCB
SthmDARdkA81iJ+QnIb2YzLWWPIZLlA/BTfEYf/Sdla3e0kzZJornsQ1rv8zlGw1
3jTsZJfWFzrSFvbzVQKBqd74y+UB5f360IEU1JEcimVjYya3gHZwioGCj2OYQ5tQ
SzIIWmbMVh8=
=IRdM
-----END PGP MESSAGE-----

--pgp-sign-Multipart_Sat_Mar_13_15:06:05_1999-1--