Try adding the following attribute to the SingleSignOn valve element in server.xml
requireReauthentication="true". With this set to true, each request will be presented to the app's security Realm, rather than relying on the Principal cached with the SSO. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3911505#3911505 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3911505 ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _______________________________________________ JBoss-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/jboss-user
