OSDev.org

Hi,

I have a question that relates to programming a secure logout routine for .htaccess password protection on a website.

There is a site that I go to and it has this kind of protection, if I login I can close the browser and later open my browser and go back without needing to enter my password again (I do not select to save my password). Now on this page there is a link that allows me to logout, when I click this link and following attempt to access the page makes me have to enter my password again.

Now on my own site I am using this same kind of protection, my question is how do I create such a logout link, what script do I need to do this, it preferably should be a perl cgi script.

You help is greatly appreciated.

your talking about two different things.

htaccess, and cookies/sessions.

htaccess does not remember you logged in if you close browser and reopen to that site.

sessions/cookies remember.

On my site I know for a fact that I am using .htaccess password protection, and it does indeed remember my password and it automatically allows access.

So I dont know what is happening, but it definately using .htaccess and it is definately remembering my password.

I read somewhere that the browser will remember one set of HTTP authentication username/pass and this remains until another one overwrites it.

Your browser remembers the password/username, and you can't just logout, you have to close your browser before the password/username is reset.