This content has been marked as final.
Show 2 replies
-
1. Re: j_security_check and the generated LoginContext
motte1979 Nov 12, 2007 9:40 AM (in response to motte1979)I investigated that i need all users currently logged in (because somebody else can change the username in the application for a currently logged in user.)
This is somewhat stupid, but these are the requirements.
Any ideas ? -
2. Re: j_security_check and the generated LoginContext
ragavgomatam Jan 10, 2008 10:58 PM (in response to motte1979)You cannot change the SimplePrincipal. You set the name in the Principal via a constructor during login. Also It has only a getName() method. So answer is it
is a big security loophole if you are allowed to change the SimplePrincipal name. So not possible