Op 18-feb.-2014, om 11:53 heeft Amos Jeffries <squid3@xxxxxxxxxxxxx> het volgende geschreven: > ... > The behaviour you are seeing is because the credentials are still valid > in the authentication database. > > NP: browsers do not provide any logout mechanism to users. The above > wiki page has an example of ACL configuration to force a change of > credentials. > > Amos Thank you for confirming that my findings are correct. I’m reading about the squid_session external_acl_type, would setting the deny_info page to an url that is not allowed for anyone (following the force-reauthentication-hack) solve my problem and trigger a popup after the session time? The force method works as expected, so if i could just redirect the user into that direction automatically that would be great! Wim
