> From: Peter Bright [mailto:[EMAIL PROTECTED] > Subject: RE: Form Based Authentication > > > > > > > It's point (c) that's proving problematic; there's no way to > > > reauthenticate that I can see. > > > > What happens if you just invalidate the existing session? > > The user gets logged out.
Exactly - and they then must reauthenticate with the updated password. Isn't that what you want? - Chuck THIS COMMUNICATION MAY CONTAIN CONFIDENTIAL AND/OR OTHERWISE PROPRIETARY MATERIAL and is thus for use only by the intended recipient. If you received this in error, please contact the sender and delete the e-mail and its attachments from all computers. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]