is there any way to tell Apache that it should restart the session and

Question

0

Asked: May 15, 20262026-05-15T20:35:19+00:00 2026-05-15T20:35:19+00:00

is there any way to tell Apache that it should restart the session and

0

is there any way to tell Apache that it should restart the session and drop an existing http-auth?

I’ve a system where a user is first authenticated with http-auth against apache and afterwards authorized for services within the PHP-Application. Once the user logs out I’d prefer to also reset the existing http-auth somehow.

Any ideas?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-15T20:35:20+00:00

Editorial Team

2026-05-15T20:35:20+00:00Added an answer on May 15, 2026 at 8:35 pm

Unfortunately, letting users log out was not defined in the various RFCs that cover HTTP auth.

The only way to simulate it is to return a 401 response, which will tell the browser that the credentials sent aren’t valid. Unfortunately, the browser will then prompt the user to log back in again, and that probably isn’t what you want to happen.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

is there any way to tell Apache that it should restart the session and

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply