Q. Logout a user, tips and traps.
Yes, with cookie-based login, it is possible to have a user logout. There are samples in the installation directory for all the types of cookie-login.
If you need the logout capability, we recommend turning off keep-alives on the server, because requests will continue to be served even after the user has logged out. Credentials are only requested at the start of each stream, which can last over several requests with keep-alive on.
If instead you need to use keep-alives then we need to tell the server to terminate the keep-alive from the logout.asp page. Add the following 2 lines to the end of the logout.asp:
response.buffer = true response.flushThis will tell the server to terminate the connection, and fresh credentials will be required from now on.
Also remember that cachable pages will remain in the browsers cache, until it is emptied.
If you experience problems, try this script
In the logout.asp file, after the section of code:
' whichType: 1 for per-directory, 2 for sitewide