3 Replies Latest reply on Sep 4, 2001 4:39 PM by starksm64

    Force JAAS logout

    willievu
    willievu Sep 1, 2001 12:03 PM

      After some users logged in using JAAS, I want to kick off them for system administration work. Is it possible to get a list of logged-in users and force logging out them in JAAS? If so, how?

      • 15110 Views
      • Tags:
        • 1. Re: Force JAAS logout
          starksm64
          starksm64 Sep 2, 2001 10:48 PM (in response to willievu)

          All you can do is flush the authentication caches for every security domain.

            • Actions
          • 2. You cannot
            ko5tik
            ko5tik Sep 3, 2001 10:11 AM (in response to willievu)

            Even if you flush authentication caches,
            ( how do you achieve this without tampering on
            jboss source? )
            clients still have principal/credentila information stored. And they will use it on the next EJB invocation.

              • Actions
            • 3. Re: You cannot
              starksm64
              starksm64 Sep 4, 2001 4:39 PM (in response to willievu)

              The clients need to issue a logout to remove any credentials previous bound during the login.

                • Actions