[jboss-user] [Security & JAAS/JBoss] - Re: Null HttpSession using JAAS
jaikiran
do-not-reply at jboss.com
Wed Oct 18 08:13:46 EDT 2006
"bjornn" wrote : in the case of my logout page invalidate de session, the filter would create a new one and the user would stay logged in.
How would that happen? Your filter will be invoked before the control is forwarded to the logout page. The logout page can then use this session(created in the filter) to invoke the invalidate method.
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3979053#3979053
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3979053
More information about the jboss-user
mailing list