What I need to know is just how the logout mechanism works. It seems when I logout at the client the client module is logged out but unitl I logon again from the client with the same userId and password the logout is not called at the server module?
The stub source is not relevant. The close method removes the SRP session from the server side cache. There is no logout because The srp session cache is seperate from any security domain that happens to leverage via the SRPCacheLoginModule. Logout will be called when the security domain cache expires. This is similar to the interaction between a web session and the associated security domain cache. 3.2.6 added a capability to flush the security domain cache when the web session expires. Create a feature request for similar behavior between the SRP service and the security domain cache.