• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Liutauras Vilda
  • Jeanne Boyarsky
  • Devaka Cooray
  • Paul Clapham
Sheriffs:
  • Tim Cooke
  • Knute Snortum
  • Bear Bibeault
Saloon Keepers:
  • Ron McLeod
  • Tim Moores
  • Stephan van Hulst
  • Piet Souris
  • Ganesh Patekar
Bartenders:
  • Frits Walraven
  • Carey Brown
  • Tim Holloway

Locked people can still post?

 
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Greetings. I'm having trouble with my 2.1 Jforum where even after I lock a user's account, and change their password, they can still post and respond... any ideas on how this might be happening, or more importantly, how I can prevent it, would be much appreciated.
[originally posted on jforum.net by TheDruidXpawX]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hm, I'll take a look.

Rafael
[originally posted on jforum.net by Rafael Steil]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Greetings. I'm just checking back by to see if there's any news on this one, and if it's fixed by upgrading to the latest release.

Dru
[originally posted on jforum.net by TheDruidXpawX]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Not yet

I've a quite long lists to items to do in the JIRA. I hope to get all done until 2.1.5

Rafael
[originally posted on jforum.net by Rafael Steil]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Is there any magic trick I can do to terminate their connection? Restarting tomcat seems to still maintain their session. How can I smoke their session?
[originally posted on jforum.net by TheDruidXpawX]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, we ran into this problem too! Had a "renegade" poster .. locking the account doesn't clear their session.

Rafael, this is basically the same request I asked you about a few weeks ago. I put it into JIRA, and also received a message that the feature had been completed. I assume it will be included in the 2.1.5 release.

Usually bouncing Tomcat (or whatever app server you're using) clears the session.
[originally posted on jforum.net by GatorBait3]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, 2.1.5 will include it

Rafael
[originally posted on jforum.net by Rafael Steil]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
More details:

Rafael Steil closed JF-391:
---------------------------
Fix Version: 2.1.5
Resolution: Fixed

Request:
----------------------------
"Log user out of forums if account is locked while they are logged in."

Looking forward to the 2.1.5 release, Rafael!

As always, we appreciate ALL of your efforts!
[originally posted on jforum.net by GatorBait3]
 
Migrated From Jforum.net
Ranch Hand
Posts: 17424
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

GatorBait3 wrote:Yes, we ran into this problem too! Had a "renegade" poster .. locking the account doesn't clear their session.

Rafael, this is basically the same request I asked you about a few weeks ago. I put it into JIRA, and also received a message that the feature had been completed. I assume it will be included in the 2.1.5 release.

Usually bouncing Tomcat (or whatever app server you're using) clears the session.



As a side note, restarting your server or rebooting the context does NOT clear the sessions when the server has been configured to persist sesions, as they are serialised to disk, usually, and then re-loaded when the application restarts. In this case, you should stop your container, remove the persisted sessions (usually a directory created under WEB-INF, but depends on container) and then start your container again.

Another dirty trick would be to store a non-serializable objet in the session you want to get rid of, but that's a bit nasty

Not necessary for JForum after the fix, but just in case it happens to you with something else ;).

Persistent sessions are a good thing, as it allows you to change things, restart context and not kick all your users out, so many servers have this option configured.


[originally posted on jforum.net by GreenEyed]
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!