[jbossseam-issues] [JBoss JIRA] Closed: (JBSEAM-895) Support re-setting the principal in identity without relogin

Shane Bryzak (JIRA) jira-events at lists.jboss.org
Thu Jan 31 02:45:59 EST 2008

     [ http://jira.jboss.com/jira/browse/JBSEAM-895?page=all ]

Shane Bryzak closed JBSEAM-895.

    Fix Version/s: 2.1.0.GA
       Resolution: Done

I've made Identity.unAuthenticate() a public method that sets the principal to null, and creates a new subject.  Calling this instead of Identity.logout() will effectively remove authentication information, but won't destroy the user's session.  Note also that it won't raise the org.jboss.seam.security.loggedOut event as this is specific to Identity.logout().

> Support re-setting the principal in identity without relogin
> ------------------------------------------------------------
>                 Key: JBSEAM-895
>                 URL: http://jira.jboss.com/jira/browse/JBSEAM-895
>             Project: JBoss Seam
>          Issue Type: Feature Request
>          Components: Security
>            Reporter: Christian Bauer
>         Assigned To: Shane Bryzak
>            Priority: Minor
>             Fix For: 2.1.0.GA
> I'm allow my users to change passwords and usernames while they are logged in. After such a change of credentials, I need to replace the principal in the identity component. This can currently only be done through logout() and login(), manually by the user. I want to do this automatically, and I don't want to destroy the session for that.

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira


More information about the seam-issues mailing list