This week's book giveaways are in the Java EE and JavaScript forums.
We're giving away four copies each of The Java EE 7 Tutorial Volume 1 or Volume 2(winners choice) and jQuery UI in Action and have the authors on-line!
See this thread and this one for details.
The moose likes JSF and the fly likes Logout Procedure Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of The Java EE 7 Tutorial Volume 1 or Volume 2 this week in the Java EE forum
or jQuery UI in Action in the JavaScript forum!
JavaRanch » Java Forums » Java » JSF
Bookmark "Logout Procedure" Watch "Logout Procedure" New topic

Logout Procedure

Enrico Ascaruta Tangau

Joined: Aug 23, 2010
Posts: 11
I'm tring to implement a logout procedure for my web app;
this procedure should be activate from ajax commandLink and should destroy backingbeans, invalidate session and (important) redirect to login page (jsp).

How can I do?
Tim Holloway
Saloon Keeper

Joined: Jun 25, 2001
Posts: 16019

The most common way to force a logout is to use the session.invalidate() method, which destroys all session objects, including the container-managed User Principal object. New developments in JEE also provide a specific logout method if your environment is capable of using it.

Redirecting to a login page is automatic when you use the J2EE standard security services. If you invented your own, you're on your own. You'll have to develop, debug, and maintain your own mechanisms. And deal with the consequences when your "secure" software turns out not to be secure.

Customer surveys are for companies who didn't pay proper attention to begin with.
I agree. Here's the link:
subject: Logout Procedure