tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 46738] New: SingleSignOn session invalidation by multiple webapp's
Date Thu, 19 Feb 2009 17:14:45 GMT

           Summary: SingleSignOn session invalidation by multiple webapp's
           Product: Tomcat 6
           Version: 6.0.18
          Platform: PC
        OS/Version: All
            Status: NEW
          Severity: critical
          Priority: P2
         Component: Catalina


I'm using SingleSignOn Valve and have multiple webapp's.
When I call session.invalidate() in one of webapp's, it only invalidates
session in this one webapp.

Citation from documentation:
"As soon as the user logs out of one web application (for example, by
invalidating the corresponding session if form based login is used), the user's
sessions in all  web applications will be invalidated. Any subsequent attempt
to access a protected resource in any application will require the user to
authenticate himself or herself again."

Tomcat 6.0.18. 
Java HotSpot(TM) Client VM (build 10.0-b23, mixed mode, sharing)

Best Regards, Vilinski

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message