This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Security and the fly likes Web Sphere Application Server 6.1 not logging a user out. Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Engineering » Security
Bookmark "Web Sphere Application Server 6.1 not logging a user out." Watch "Web Sphere Application Server 6.1 not logging a user out." New topic
Author

Web Sphere Application Server 6.1 not logging a user out.

Irfan Qazi
Greenhorn

Joined: Mar 24, 2009
Posts: 1
Hello;

First time user of this site, so pardon my ignorance.

I have WAS 6.1 installed and Custom TAI configured. The application seems to work fine except my logout functionality is not working. I am not sure what I am missing but I am invalidating the session, removing the cookies that I had created. However, nothing seems to stop the user from getting to the protected page. Any one has any ideas? Is the LTPA token explicitly removed within the code? Any sample code for log out functionality. Here is my invalidate call. Thanks for your help.

request.getSession().invalidate();

Thanks,
Irfan
 
It is sorta covered in the JavaRanch Style Guide.
 
subject: Web Sphere Application Server 6.1 not logging a user out.
 
Similar Threads
Session timeout problem
Session Issue in websphere 6.1
Session count of Web application
Basic page logout design
invalidate method of HttpSession