Solved

Force user to log out?

Posted on 2000-05-12
7
233 Views
Last Modified: 2013-12-18
Hi,

I have an Web application that I need to make the web users "log out"(to clear their authentication info) after they pressed a button. That means when they try to click on something on the website, the system should prompt them for user name and password again.

Is that possible?
I know there is this command "&login" can be used to force users to enter their name & password.
So is there any command I can use to force user log out instead?

Thanks a lot!
0
Comment
Question by:kspuea
  • 2
  • 2
  • 2
  • +1
7 Comments
 
LVL 5

Expert Comment

by:snocross
ID: 2804566
A workaround to do a logout in R4 can be found by clicking here: http://notes.net/46dom.nsf/7d6a87824e2f09768525655b0050f2f2/1d0aa4b04c754e8c8525657d005f1b9c?OpenDocument

basically (as copied from the above link):
****************************************
Create a "Logout Database" (in the same path or realm that the user logged into) that only lets a dummy user (ie with username=log password=off) login to it. Then you can create a logout link to this "Logout Database" and instruct endusers to use the dummy username and password. When the enduser logs into this "Logout Database" as the dummy user their real name and password will be cleared from the browser and replaced with the dummy username and password. Unfortunatley I don't know of any way to do this automatically (the end user is forced to type in the dummy username and password for this to work).
****************************************
0
 
LVL 5

Expert Comment

by:snocross
ID: 2804574
Another thing you could do which is not pretty; use javascript self.close() to close the browser.
0
 
LVL 1

Accepted Solution

by:
DButler earned 20 total points
ID: 2806460
Under R4, and R5 when not using session-based authentication, you must close all instances of the browser to logout.

Try setting up session-based authentication -- under the "Domino Web Engine" subtab, under "Internet Protocols" in the server document.  Then issue a URL with "?login" appended -- as well as logging the user out, this will return the user to the home page as defined in the "HTTP" subtab.

Note that the next-to-last release of QuickPlace didn't work well on servers using session-based authentication.

For more information, see "Session-based name-and-password authentication for Web clients" in the Domino R5 Administration Help database.
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 6

Expert Comment

by:ghassan99
ID: 2806682
If you are using R5, and you have enabled session based auth, then just append '?logout' to the url, and u r there.

-Gus
0
 
LVL 1

Expert Comment

by:DButler
ID: 2809208
Big OOPS on my part -- that reference to appending "?login" was meant to read "?logout".  Apologies for not proofreading properly.  Thx ghassan99!
0
 

Author Comment

by:kspuea
ID: 2902812
Answer accepted
0
 

Author Comment

by:kspuea
ID: 2902813
Thanks very much, DButler & ghassan99!
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For Desktop Techs: How to retain a user's Notes configuration data when swapping out the end user's computer. (Assuming that you are not upgrading to a completely different version of Notes client) All you need to do is: 1) install Notes o…
IBM Notes offer Encryption feature using which the user can secure its NSF emails or entire database easily. In this section we will discuss about the process to Encrypt Incoming and Outgoing Mails in depth.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

948 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now