We need a way to "break" the basic authentication, basically log a user out.
We have a 3rd party web-app which requires basic authentication. We (currently) use htaccess for access management.
A user that hits the site is prompted for user name and password and continutes throughout the site, but they can leave the site, return and later without re-authenticating as long as they don't close their browser.
I understand that the browser re-submits the information when they return (as this information is available in the header). We tried to flush out the server variable $PHP_AUTH_USER but that didn't work. Right now we get around the problem with cookies (setting and redirecting to another page) but it's not a "clean" solution.
Our environment is as follows:
HPUX11 n class HP -Apache1.3.20 -PHP4 -Oracle
We have a 3rd party web-app which requires basic authentication. We (currently) use htaccess for access management.
A user that hits the site is prompted for user name and password and continutes throughout the site, but they can leave the site, return and later without re-authenticating as long as they don't close their browser.
I understand that the browser re-submits the information when they return (as this information is available in the header). We tried to flush out the server variable $PHP_AUTH_USER but that didn't work. Right now we get around the problem with cookies (setting and redirecting to another page) but it's not a "clean" solution.
Our environment is as follows:
HPUX11 n class HP -Apache1.3.20 -PHP4 -Oracle
