Re: User Auth.

To: "Larry J. Hughes Jr." <hughes@indiana.edu>
Subject: Re: User Auth.
From: jeff@spyglass.com (Jeff Hostetler)
Date: Tue, 26 Mar 96 18:16:54 -0600
Cc: nneul@umr.edu (Nathan Neulinger), "S.W. Cheung" <swcheung@hkimd.cig.mot.com>, www-security@ns2.rutgers.edu, jeff@fido.spyglass.com
In-Reply-To: (Your message of Tue, 26 Mar 96 14:22:49 EST.) <199603261922.OAA25267@bodhi.it.iupui.edu>


> #I've suggested a "Unauthenticate"  menu option to netscape many times, but
> #it's not like they ever listen to users.

Spyglass has had this feature for over a year.  From a dialog available
from the menu bar, you can flush the password cache.  You can also disable
password cacheing completely, if you want.

> Better yet, integrate this functionality into HTTP so the server
> can optionally request that the browser not cache the user's 
> password. ....

I've also been experimenting with a server version.  An HTTP header
of the form:

	FlushAuthenticationCache: Basic realm=foobar

Which lets the server ask the browser that the cache for the given
realm and authentication method.

Thoughts ??

jeff

Follow-Ups:

Re: User Auth. : Spyglass proposal

From: "David W. Morris" <dwm@shell.portal.com>

References:

Re: User Auth.

From: "Larry J. Hughes Jr." <hughes@indiana.edu>

Previous: RE: User Auth.
Next: Re: User Auth.
Index(es):
- Index
- Thread