Re: formbased authentication: logout ?

uthay Thu, 22 Feb 2001 06:40:55 -0800
Thats correct.
But it was more of a design issue than anything else.
For me using session bean helps me to have accessor modifier style controle
over my session vars.
Extend it little bit further and you get full session control over your
application.

following code will allow me to control the access to the pages at user or
admin level

boolean admin=false;
if(sessInfo.getUName()==null || sessInfo.getUName()== ""){
%>
<jsp:forward  page="loginValidate.jsp" />
<%
}else{
    if(sessInfo.getAuthority().equals("admin")){
        admin=true;
    }
}

sessInfo.setUName("") will invalidate the user

Comments are welcome
Note:sessInfo-session bean



----- Original Message -----
From: "Christian Rauh" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Thursday, February 22, 2001 2:36 PM
Subject: Re: formbased authentication: logout ?


> uthay wrote:
> >
> > If you want an application controled authentication why dont you
develope a
> > session bean that will interact with the login script?
>
> How can that be done without developing the whole custom authentication
> mechanism?
>
> Christian Rauh
>
> >
> > ----- Original Message -----
> > From: "paul marshal" <[EMAIL PROTECTED]>
> > To: "tomcat-list" <[EMAIL PROTECTED]>
> > Sent: Wednesday, February 21, 2001 3:10 PM
> > Subject: formbased authentication: logout ?
> >
> > > How do I create a possibility for my users to logout.
> > > Is there something in the HttpSession that I need to delete ?
> > > Or how does it all work ?
> > >
> > > Paul
> > >
> > > --
> > > Paul Marshall
> > > [EMAIL PROTECTED]
> > > 089/26019-609
> > >
> > > ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, email: [EMAIL PROTECTED]
> > >
> > >
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, email: [EMAIL PROTECTED]
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, email: [EMAIL PROTECTED]
>
>


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
Re: formbased authentication: logout ?

Reply via email to
