I have an authenticated session extending DefaultAuthenticatedSession.
This session authenticates the user against LDAP or DB.
My SignIn page does not persist the username and password.
This should imply a sign-in page displayed per session.

Indeed, if the browser is closed or SignOut page invalidates the session 
a sign-in page is displayed.
However, if I restart Tomcat and the Browser remains open, no sign-in 
page is displayed but instead my home page is displayed.

How does DefaultAuthenticatedSession know that the user is authenticated?


Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
Wicket-user mailing list

Reply via email to