> I have a Java client on a Java web application and I'd like to force the user > to re-authenticate when accessing some JSP, for example to change the > password on the App.
Hopefully you're using the Jasig Java CAS client to secure this webapp. If so, you can simply use the renew flag to force reauthentication. (And possibly a carefully-scoped CAS filter if it's just the one JSP page.) See https://wiki.jasig.org/display/CASC/Configuring+the+JA-SIG+CAS+Client+for+Java+in+the+web.xml for more information; in particular you want to set the renew init-param on a TicketValidationFilter to true. M -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
