Closed wesleyboar closed 1 year ago
I think question 1 should read "Why is the logout field done via a form?" Assuming so, I don't see any reason to have a form at all -- I am open to removing it and making it be an event that occurs upon visiting the URL. Does that conform with how other sites do it?
Yup, it should have said that. 🙂
But, I did test third-party websites, and found GitHub has a Logout confirmation form.
github logout button | github logout confirmation |
---|---|
Websites whose logout could have unintended consequences across other applications, like Tapis, may ask you to confirm logout. I think Tapis should retain it's logout form.
Hm, but I think I am being told (in private chat) that logout on Tapis is just a simple logout of anyone using tapis.io independently, and has no effect on client apps. If that's the case, C.J. and I would rather just not have the form. I'll report back what I learn.
I want to propose logout form not exist, but I'm unsure of the "user experience flow" of doing so, because I don't know what steps a user takes to reach /logout
endpoint, nor why.
So, for now, I'll just change the form from [✓] Logout and [ Submit ] to just [ Log out ] (and tweak messaging).
Completed via #53.
Overview
loginlogout field done via a form?