tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Collins, Jim" <jim.coll...@uk.nomura.com>
Subject RE: logout and login again
Date Thu, 15 May 2003 15:13:24 GMT
You could try writing your own authentication code as a filter. I have done
something similar for some apps I wrote.

Regards

Jim.

> -----Original Message-----
> From: Werner van Mook [mailto:werner@connecties.com]
> Sent: 15 May 2003 15:57
> To: Tomcat Users List
> Subject: Re: logout and login again
> 
> 
> Does this mean that using something else (e.g. FORM) will solve my 
> problem?
> 
> Werner
> 
> On Thursday, May 15, 2003, at 04:46 PM, G. Wade Johnson wrote:
> 
> > One surprise with the BASIC authentication is that the 
> browser retains
> > the userid and password you enter until it is restarted.
> >
> > When you invalidate the session, your server will rerequest 
> the basic
> > authentication from the browser. The browser finds that it 
> already has
> > a userid and password for this server/realm combination and sends it
> > without bothering the end user.
> >
> > G. Wade
> >
> > Werner van Mook wrote:
> >>
> >> Hi,
> >>
> >> I'm new to this list so forgive me if this questions has been asked
> >> before.
> >> (although I couldn't find it in the archives).
> >>
> >> I have a web app for which a user has to log in with a name and
> >> password.
> >> I give the users a way to logout by invalidating the 
> current session.
> >>
> >> Now it should be possible to go back to the page where you 
> have to log
> >> in and ask for the name and password.
> >>
> >> This will not work for me. My browser does not show a login window.
> >> It only shows it when I restart my browser.
> >>
> >> I use basic authentication with the standard tomcat memory realm.
> >>
> >> I hope I'm clear in my story.
> >>
> >> Can anybody point me in the right direction.
> >>
> >> Werner
> >>
> >> 
> ---------------------------------------------------------------------
> >> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> >> For additional commands, e-mail: 
> tomcat-user-help@jakarta.apache.org
> >
> > 
> ---------------------------------------------------------------------
> > To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> > For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> >
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: tomcat-user-help@jakarta.apache.org
> 


PLEASE READ: The information contained in this email is confidential
and intended for the named recipient(s) only. If you are not an intended
recipient of this email you must not copy, distribute or take any 
further action in reliance on it and you should delete it and notify the
sender immediately. Email is not a secure method of communication and 
Nomura International plc cannot accept responsibility for the accuracy
or completeness of this message or any attachment(s). Please examine this
email for virus infection, for which Nomura International plc accepts
no responsibility. If verification of this email is sought then please
request a hard copy. Unless otherwise stated any views or opinions
presented are solely those of the author and do not represent those of
Nomura International plc. This email is intended for informational
purposes only and is not a solicitation or offer to buy or sell
securities or related financial instruments. Nomura International plc is
regulated by the Financial Services Authority and is a member of the
London Stock Exchange.



---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org


Mime
View raw message