[jira] [Commented] (ISIS-299) Extend the authentication API so that can explicitly logout session.

Dan Haywood (JIRA) Tue, 18 Feb 2014 06:39:15 -0800

    [ 
https://issues.apache.org/jira/browse/ISIS-299?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13904096#comment-13904096
 ]


Dan Haywood commented on ISIS-299:
----------------------------------

See also ISIS-686, a fix to make the current hacky logout mechanism work when 
running under Tomcat.

> Extend the authentication API so that can explicitly logout session.
> --------------------------------------------------------------------
>
>                 Key: ISIS-299
>                 URL: https://issues.apache.org/jira/browse/ISIS-299
>             Project: Isis
>          Issue Type: Improvement
>          Components: Core, Security: Shiro, Viewer: Wicket
>    Affects Versions: viewer-wicket-1.0.0, security-shiro-1.0.0, core-1.0.0
>            Reporter: Dan Haywood
>            Assignee: Dan Haywood
>             Fix For: viewer-wicket-1.4.0, security-shiro-1.4.0, core-1.4.0
>
>
> Currently the wicket viewer's logout button merely invalidates the wicket 
> session, but does not invalidate the shiro session because there is no API to 
> do so.
> This ticket is to provide API for this, and implement in both shiro and 
> wicket.
> Should explore the 55minutes' ShiroWicketPlugin to see how it works...



--
This message was sent by Atlassian JIRA
(v6.1.5#6160)

[jira] [Commented] (ISIS-299) Extend the authentication API so that can explicitly logout session.

Reply via email to