On 4/14/05, Jonathan Eric Miller <[EMAIL PROTECTED]> wrote: > After looking at the code, it looks like the SSO session doesn't go away > until all other sessions for the user have expired. So, as far as I can > tell, the SSO session doesn't have it's own session timeout as far as I can > tell.
Indeed. OTOH, if one of the sessions is explicitely invalidated, the SSO will go away right away. I think that's the most appropriate behavior, but changing it is very easy using a little code hacking. -- xxxxxxxxxxxxxxxxxxxxxxxxx R�my Maucherat Developer & Consultant JBoss Group (Europe) S�RL xxxxxxxxxxxxxxxxxxxxxxxxx --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
