https://bz.apache.org/bugzilla/show_bug.cgi?id=62048
--- Comment #10 from Marek Czernek <mczer...@redhat.com> ---
So I have dug a little bit deeper into this topic and I don't seem to have
found a silver bullet for all browsers...
In Chrome, the original solution (in my PR) works.
In Firefox, the original solution (in my PR) does not work, but sending a GET
"badCredentials@{server}:{port}/manager/html" prompts for user's credentials
since login with incorrect credentials was attempted. This, however, does not
work with Chrome, nor does it work with IE.
In IE, the only consistent way to log out was using IE-specific command:
document.execCommand("ClearAuthenticationCache")
My suggestion: I'll implement the logout function for Chrome, Firefox, and IE,
while issuing a warning for any other browser that the logout functionality may
not work. What do you think, Mark? Is a functioning solution for IE, Chrome,
and FF acceptable? Not sure about OS X and Safari; for that, I'll have to
experiment a bit later. Also, aren't mobile browsers out of the question? I'm
no expert of course, but I wonder how many people use mobile devices to deploy
apps and manage their virtual host settings on Tomcat... This PR is starting
to have a lot of caveats I'm afraid :/.
Also, it's noteworthy to say that since the logout implementation depends on
browser developers, and that only IE has implemented it (while the rest depends
on workarounds), it is possible that with new browser versions, this would stop
working (for example, in the past, Chrome allowed the
"badCredentials@{server}:{port}" way of login but does not any more).
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
