I have apache acting as a proxy and providing authentication to a JBoss application server . I time out sessions in JBoss but I think the browser is storing the login details as the user can carry on without having to log in again. Is there a way to force the browser to delete login details , or for apache to force reauthentication when there is a new session ? Has anyone else come across this situation ?
Thanks, Laurence This e-mail is confidential and is for the addressee only. Please refer to www.jpmorgancazenove.com/disclaimers/jpmorgancazenove.htm for important disclaimers and the firm's regulatory position.
