W3C home > Mailing lists > Public > www-talk@w3.org > March to April 1997

Browser authentication

From: <grahameg@kestral.com.au>
Date: Thu, 24 Apr 1997 15:49:45 +0800
To: www-talk@w3.org
Message-ID: <48256483.002AC88D.00@kestral-inet.kestral.com.au>

Is there anyway for a server to clear the authentication field carried in
the HTTP header?

We wish to time the authentications out, but returning an HTTP 401
Authorisation failed
merely resuts on the browser giving the user the opportunity to change
their password.
If they don't, the browsers re-usethe old password Is there anyway to stop
them from
doing this?

Received on Thursday, 24 April 1997 03:50:13 UTC

This archive was generated by hypermail 2.4.0 : Monday, 20 January 2020 16:08:22 UTC