Hi there,
I'm hosting a form on IIS that requires windows authentication to log in. This works completely fine, however, when the user logs in for the first time their device caches their credentials so that when they next load the page they're taken straight to the form and they do not have to log in again. Since my form gives the user to certain confidential data I want to make sure the user has to log in on every page load.
The only way currently I've been able to make the form request credentials again is by clearing the cache manually on the device itself.
Is there any way to prevent credential caching or making the user log in every time via IIS?
Headers like cache-control do nothing because these are loaded after the user logs in and credentials are cached. (identity impersonate is already set to false)
Thanks, Alex.