[Zope] Revoking authentication (or: logging out)?
Howard Clinton Shaw III
shawh@sths.org
Thu, 17 Jun 1999 14:12:38 -0500
On Wed, 16 Jun 1999, you wrote:
> I'm working on a system to make medical records available via a web
> interface. It needs to make different levels of access available to
> different sorts of people (doctors, nurses, clerical staff) - a perfect
> match for Zope's roles.
>
> But I've encountered one rub: the web browser will be running on PC's
> sitting in various spots in the clinic's offices: the doctor's office, work
> areas, even examination rooms. There will be a different person sitting
> down at it every few minutes. But, with "Basic" authentication, once the
> web browser has your username/password in its clutches, it never lets go.
>
> We're dealing with medical records here, so it is a poor idea to leave a
> "logged in" browser sitting around in a public place. What I am looking
> for is a way to put in a "log out" option that stops short of killing and
> restarting the browser. Has anybody else figured out a way to do this?
>
Actually, to refine my previous suggestion: the link should probably go to an
intro page directly, which page should include a redirect to a URL such
as I described. This way, you don't have to worry about the previous info
remaining on screen.
> Thanks,
>
> jon
>
> Jonathan Corbet, Eklektix, Inc.
> corbet@eklektix.com
>
> _______________________________________________
> Zope maillist - Zope@zope.org
> http://www.zope.org/mailman/listinfo/zope
>
> (For developer-specific issues, use the companion list,
> zope-dev@zope.org - http://www.zope.org/mailman/listinfo/zope-dev )
--
Howard Clinton Shaw III - Grum
St. Thomas High School
#include "disclaimer.h"