Hi folks.
When logging out, I would like the HTTP session to be invalidated as well. I've
written a trivial logout handler:
public void logout(HttpServletRequest request,
HttpServletResponse response, Authentication authentication) {
final HttpSession session = request.getSession(false);
if (session != null) {
session.invalidate();
}
}
This functionality seems quite basic to me - should this maybe be included into
ACEGI?
Bye.
/lexi
-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Home: http://acegisecurity.org
Acegisecurity-developer mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
