-
1. Re: Logout: Invalidate Session and resetting Principal
soshah Jul 27, 2006 12:27 PM (in response to kosmi)Try-
actionResponse.setWantSignOut(true)
Thanks
Sohil -
2. Re: Logout: Invalidate Session and resetting Principal
kosmi Jul 28, 2006 2:59 AM (in response to kosmi)Thanks for your answer,
but where can I call the method?
The JBossActionResponse in the portlet doesn't have such a method.
I tried to call it in a custom commandMapper but
i also can't find the correct response.
Thanks,
Daniel -
3. Re: Logout: Invalidate Session and resetting Principal
soshah Jul 28, 2006 9:37 AM (in response to kosmi)kosmi-
In your CustomMapper use
inside thepublic ControllerCommand doMapping(ServerInvocation invocation, String portalContextPath, String portalRequestPath) use invocation.getResponse().setWantSignOut(true);
Thanks
Sohil -
4. Re: Logout: Invalidate Session and resetting Principal
kosmi Jul 28, 2006 10:02 AM (in response to kosmi)Hi Sahil,
i tried this, but it does not work.
Can I help you with some more infos? -
5. Re: Logout: Invalidate Session and resetting Principal
kosmi Aug 8, 2006 10:25 AM (in response to kosmi)Hi Sohil,
we solved the Problems assosiated with the principal.
Our main problem was a misplaced jbosssx.jar.
it was duplicated in server/xxx/libs and server/xxx/deploy/xxx/lib.
Then I turned of caching in J aasSecurityManagerService mbean (jboss-Service.xml)
and set flushOnSessionInvalidation="true" in jboss-web.xml
and voila - the principal is reloaded on each login.
The sessionId is flushed on the server side too - so everything works fine..
But is there a simple possibility to set a new sessionId (invalidate the cockie) on the client?
Daniel -
6. Re: Logout: Invalidate Session and resetting Principal
soshah Aug 8, 2006 11:00 AM (in response to kosmi)kosmi-
To force the invalidation you can try invalidating the http session in your custom mapper and see if that works.
Thanks
Sohil