I'm using Cocoon 2.1.5 w/ Jetty 4.2.15.
I have an unusual application of the Cocoon authentication framework. The site we're developing is sort of a satellite of the client's main site. The user authenticates at the main site, after which the link to our site contains embedded id and password strings in the URI. My Cocoon authentication resource extracts the id and password from the request — there's no login page on our site. If authentication fails, I need to redirect the user back to the "mother ship".
My problem is that the redirect back to the main site's login page is issued with the ';jsessionid=......" crap appended to the URI, so their server cannot match it. Bummer! Is there any way I can somehow kill the session if authentication failed? Or another way to lose this jsessionid thing in this case, at least?
Thanks, mark
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
