Z
z f
trying to achieve windows authentication on the fly (without the file
configured to deny anonymous access in IIS)
i returned a 401 status if the
Request.ServerVariables("auth_user") = ""
this is OK, the 401 status Code returned with additional headers and the
browser performed windows authentication
and the next time i had auth_user correctly.
but after closing the browser and re-opening it and requesting the same page
again, i get the auth_user filled with the old value without the
authentication being done again!
how can this be?
( i use fiddler to see http comunication between client and server)
TIA.
configured to deny anonymous access in IIS)
i returned a 401 status if the
Request.ServerVariables("auth_user") = ""
this is OK, the 401 status Code returned with additional headers and the
browser performed windows authentication
and the next time i had auth_user correctly.
but after closing the browser and re-opening it and requesting the same page
again, i get the auth_user filled with the old value without the
authentication being done again!
how can this be?
( i use fiddler to see http comunication between client and server)
TIA.