Hello all,
We have implemented ORCID authentication in our web application and it
works. But I would like to ask a question about the next sequence of steps:
1) Go to my web application home page.
2) Press the "Sign in with ORCID ID" button.
3) I am redirected to the ORCID web site and asked about my username and password.
4) Once the correct credentials are provided the system allows me in.
5) Log out from my application.
6) Go back to my web application home page.
7) Press the "Sign in with ORCID ID" button.
8) The system logs me in without asking for ORCID username and password.
Now here is my question: The step 8 is possible due to the fact that
orcid.org saves some cookies in my browsers. Is it possible to avoid
this behavior and force the user to introduce the user name and password
each time when he presses "Sign in with ORCID ID" ?
Best regards
Cristian