|
redirecting to the login
page !!!!!!!!!!!
i donot hav any login page at all all that i have is a resource which is registered in web.xml for BASIC = Auth <!-- Define a Security Constraint on this Application --> <security-constraint> <web-resource-collection> <web-resource-name>aDMINApplication</web-resource-name> <url-pattern>/admin/*</url-pattern> </web-resource-collection> <auth-constraint> <!-- NOTE: This role is not present in the default users file = --> <role-name>admin</role-name> </auth-constraint> </security-constraint> <!-- Define the Login Configuration for this Application --> <login-config> <auth-method>BASIC</auth-method> <realm-name>My Admin Application</realm-name> </login-config> And here any resource below the /admin/ directory.. will need a = Authentication.... just a window pops out and prompts for userid and = password when the url is like this http://www.abc.com/admin/ =20 if auth info is entered correctly then it opens index.jsp there which = creates the session. in logout i invalidate the session. if the user tries to access http://www.abc.com/admin/page.jsp it will = open the resource ... but because session variables are not there... it = will fail.. but if user opens the index.jsp itself.. a session will get created... i can trap this using a variable ... like loggedoff=3Dtrue and ask him = to close the browser and open but i not able prompt again for an Authentication window. I think it is = not possible... any tricks or roundabout to make the Authentication window pop up again = in the same browser ??? check the http rfc doc http://www.ietf.org/rfc/rfc2616.txt 14.47 WWW-Authenticate ......................................... 15.6 Authentication Credentials and Idle Clients ................155 |
- Re: BASIC authentication logout problem, ... �run.N
- Re: BASIC authentication logout problem, ... Sudarson Roy Pratihar
