I am using simple HTTP authentication on one of our web sites. I have the following which takes the AUTH_USER variable and assigns it to the Session("username"). The below code is located on the page which the user sees and authenticates against - for example if the user has not authenticated and tries to access this page then they are promoted to enter their username and password.
<% Session("username")= Request.ServerVariables("AUTH_USER") %>
The problem is getting the user to log out. I can clear the Session variables, however the variable Request.ServerVariables("AUTH_USER") still remains ? How can i clear this at the sametime as clearing the session variables ? As if the user clicks to log out (and the ASP code clear the session variables and then returns to the page which has Request.ServerVariables("AUTH_USER") on it, it will simply log the user back in.
Many thanks in advance