• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

login and logut with Acegi

 
Ranch Hand
Posts: 44
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
We have been developing an application using Struts 2.0. Acegi have been used for authentication. When user clicks Login button he is redirected to acegi filter set in web.xml file. applicationContext-acegi.xml file is where userid and passwords are kept. To provide logout functionality user is redirected to acegi logout filter which kills the user session.

Now the issue we have been facing is, once user is authenticated and redirected to inside the application, he should not see login page until logout. If user types login page url in the same browser even if he is been authenticated, login page appears and again asks for credentials. This leads to stale sessions in the memory because most of the users don't just logout but open a new browser window everytime.

How can I implement functionality where once user is authenticated wouldn't be asked for credentials until logout by himself or session expires.

Thanks,
Nandan
 
Don't get me started about those stupid light bulbs.
reply
    Bookmark Topic Watch Topic
  • New Topic