• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Authentication and Authorization

 
Andrew Rigsby
Greenhorn
Posts: 15
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
When you define authentication in the deployment descriptor using the following:

<login-config>
<auth-method>BASIC | DIGIST | FORM etc... </auth-method>
</login-config>

... how do you 'log out' the user once they have been authenticated so that another user can login and authenticate?

The reason I ask is because once I've authenticated one user I don't know how to terminate the users session so that another user can login.
 
Marc Peabody
pie sneak
Sheriff
Posts: 4727
Mac Ruby VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
You can have them click a link that goes to a servlet that does a session.invalidate();
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic