Managing Logout with Basic Authentication and PAM

Juanjdurillo · June 23, 2021, 11:57am

This might be a naïve question as I lack the expertise on HTTP.

I have deployed an instance with ood configured to authenticate users based on basic authentication (PAM). Everything works smoothly but the logout is causing me some headaches for my use case (possible shared computers). The logout mechanism asks the users to close the browser, even restarting for a complete logout (as otherwise cookies are not eliminated).

Is there any way to force this without the user having to restart the browser? I fear users logout and leave the place without realising this message and a second user might come and work with previous user credentials.

Thanks a lot!

jeff.ohrstrom · June 23, 2021, 2:22pm

Hi and welcome @Juanjdurillo!

You may find this useful, but I’m thinking you’d have to write your own logout page that does this?

Are there other auth systems you could tie into like your campus’? You’re sharing computers, but are the users sharing deskop sessions? I mean they would have to login to the computer first and get a distinct session right? In any case, I’d recommend trying to tie into another auth system, especially if logout is a requirement (as it seems to be).

Juanjdurillo · June 23, 2021, 3:48pm

Thanks a lot! I’d try with the first as we are still setting up a different identity provider.

Topic		Replies	Views
Apache AuthType 'form' support Feature Requests and Roadmap Discussion feature-request	1	376	August 31, 2022
Nicer auth interface for PAM authentication? Get Help question	5	285	December 6, 2022
OOD authentication options Get Help question	7	389	October 5, 2022
Reinstallation - PAM authentication not working - RHEL 8.5 Get Help question	16	1113	December 6, 2022
Cant log out on a Proxy configuration Get Help question	2	145	February 12, 2024

Managing Logout with Basic Authentication and PAM

Related Topics