> I have trouble unseting the values of $PHP_AUTH_USER and > $PHP_AUTH_PW. I use > the WWW-Authenticate via header() to authorize the user when accessing the > page. But when the user logs out, values in $PHP_AUTH_USER and PW seem to > remain and the user isn't asked again to authorize till a new > browser window > is opened. I suppose that this problem should be solved by > sending a proper > header() to end the session ... but which one? Of course, I could be wrong > :-) ... I would appreciate if anyone could help me to solve this.
Unfortunately I can't find my notes so I can't give you an exact answer....however if I remember correctly by sending a 401 error header to the user when they log out it will force the browser to re-request authentication Sincerely, Craig Vincent -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
