Logout from Erik Aronesty on 2001-01-02 (ietf-http-wg@w3.org from January to March 2001)

From: Erik Aronesty <erik@primedata.org>
Date: Tue, 2 Jan 2001 13:41:48 -0500
To: http-wg@cuckoo.hpl.hp.com
Message-ID: <190201c074eb$ae87b600$cd4751d1@primedata.org>

Dear Sirs,

Is it required that user agents have a mechanism for expiring or forgetting
the passwords that are used to access HTTP servers?  IE: a "logout" button
for HTTP built-in authentication.

I imagine that this is the sort of requirement that HTTP people think that
this should be in the HTML group - and vice-versa.

However it is an embarrassing oversight in modern browsers.


                                - Erik

Received on Tuesday, 2 January 2001 10:39:06 UTC