3 Replies Latest reply on Feb 21, 2005 4:21 PM by Brad Balmer

    Clear security roles programatically

    Brad Balmer Newbie

      In my web.xml I have the following:

       <security-constraint>
       <web-resource-collection>
       <web-resource-name>HtmlAdaptor</web-resource-name>
       <url-pattern>/pages/management/*</url-pattern>
       <http-method>GET</http-method>
       <http-method>POST</http-method>
       </web-resource-collection>
       <auth-constraint>
       <role-name>RosyAdmin</role-name>
       </auth-constraint>
       </security-constraint>
      
      
       <login-config>
       <auth-method>BASIC</auth-method>
       <realm-name>Rosy</realm-name>
       </login-config>
      
       <security-role>
       <role-name>RosyAdmin</role-name>
       </security-role>
      


      When a user enters the management area they are prompted for a username/password. Fine. Once they are out of the management area is there a way to clear this so that the next time they enter they are re-prompted? I looked at the session and application headers set but found nothing that I could remove to do this. Is this possible?

      Thanks.