When a user successfully logs into a web app using standard authentication (through
security-constraint, etc in web.xml), how do you explicitly kill that authenticated
session from memory (short of closing the browser or timing out?) so the same
user/browser can input a different username/password? I'd like to kill this in a JSP
or servlet code, and authentication is not part of the standard session (so
session.invalidate() doesn't do it).
Make sense? This is for development testing.
(Using JRun 3.0 sp2a, Win 2k IIS 5)
Thanks
Toby
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
