minor symfony#5630 Add a caution about logout when using http-basic authenticated firewall (rmed19)

xabbuh · xabbuh · commit 4aebc3c42363 · 2016-02-07T12:18:28.000+01:00
This PR was merged into the 2.3 branch. Discussion ---------- Add a caution about logout when using http-basic authenticated firewall Hi, I found many developers on stackoverflow asking how to logout from http_basic auth in Symfony2. So I added a caution about it. | Q | A | ------------- | --- | Doc fix? | no | New docs? | yes | Applies to | +2.3 Commits ------- 3a0bd9d Add a caution about logout when using http-basic authenticated firewall
diff --git a/book/security.rst b/book/security.rst
@@ -1135,6 +1135,13 @@ is defined by the ``target`` parameter above (e.g. the ``homepage``).
     :class:`Symfony\\Component\\Security\\Http\\Logout\\LogoutSuccessHandlerInterface`.
     See :doc:`Security Configuration Reference </reference/configuration/security>`.
 
+.. caution::
+
+    Notice that when using http-basic authenticated firewall there is no real 
+    way to log out : the only way to 'logout' is to have the browser stop sending your name and password 
+    on every request. Clearing your browser cache, restarting your browser usually helps, and some web developer
+    tools might be helpful here.
+
 .. _`security-encoding-password`:
 
 Dynamically Encoding a Password
