开发者

How do I logout from Java EE container managed security?

问答 作者:

I am working in websphere 7.0. I use the security from the application server. I would like to removi开发者_如何学Pythonng the association with the user, so user is redirected to the login page before accessing a secure resource (and request.getUserPrincipal() returns null).

I try :

request.getSession().invalidate();

but the user principal is still associated.

How could I remove that association?

On websphere, a special logout form calles must be used :

http://publib.boulder.ibm.com/infocenter/wasinfo/v7r0/index.jsp?topic=/com.ibm.websphere.base.doc/info/aes/ae/tsec_pofolo.html

Here what I am using : 

<body onload="javascript:document.logout.submit()">
    <h2>Sample Form Logout</h2>
    <form METHOD=POST ACTION="ibm_security_logout" NAME="logout">
    Click this button to log out:
    <input type="submit" name="logout" value="Logout">
    <INPUT TYPE="HIDDEN" name="logoutExitPage" VALUE="/some url">
    </form>
</body>

继续阅读:logoutservletswebsphere

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9