Is there a way to provide an exit function for a site that uses classic asp and that uses Windows authentication (i.e. limited folders have their permissions set using the server OS, and usernames / passwords are stored in Active Directory)?
If that matters, IIS 5.0 is running on the server. Logout should work for IE (6, 7, and 8) and Firefox at least.
Please note that this is an old and rather large site - many hundreds of separate ASP pages, so any solution related to changing individual pages simply will not work. (For the same reason, as well as basic courtesy, please do not suggest switching to asp.net.)
What I have found so far suggests that sending a 401 response code may cause some browsers to clear authentication, but (1) I don't know how to do this, and (2) I really prefer something that actually works, and not just has a chance to work. I also know that messing with a Session object (.Abandon, for example) would be completely pointless because it is not where authentication is performed.
source
share