[英]Disconnection problem using W20 framework
I´m using seedstack 15.11.1 and W20. 我正在使用Seedstack 15.11.1和W20。 When the user click on logout the user is not disconnected from application if the user don´t close the browser.
当用户单击注销时,如果用户不关闭浏览器,则不会断开与应用程序的连接。 With a new click in login you are automatically connected to the application without ask user & passoword.
单击新的登录名,您将自动连接到该应用程序,而无需询问用户和密码。 It´sa security risk.
这是安全隐患。 Exist a version of framework that fix this problem ?
是否存在解决此问题的框架版本? Thanks
谢谢
Indeed, this feature has been added in W20 version 2.3.0, which is provided since SeedStack 16.4. 实际上,此功能已从SeedStack 16.4开始提供的W20版本2.3.0中添加。
W20 2.3.0 changelog W20 2.3.0更新日志
[new] Implement best-effort credentials cleanup for basic authentication (forcing the browser to forget credentials).
[new]为基本身份验证实施“尽力而为”凭证清除(强制浏览器忘记凭证)。
The upgrade from 15.11.1 to 16.4 is quite simple but watch out for some breaking changes . 从15.11.1升级到16.4非常简单,但要注意一些重大更改 。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.