This week's giveaway is in the Android forum.
We're giving away four copies of Android Security Essentials Live Lessons and have Godfrey Nolan on-line!
See this thread for details.
The moose likes Struts and the fly likes login and logut with Acegi Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Android Security Essentials Live Lessons this week in the Android forum!
JavaRanch » Java Forums » Frameworks » Struts
Bookmark "login and logut with Acegi" Watch "login and logut with Acegi" New topic
Author

login and logut with Acegi

Nandan Jain
Ranch Hand

Joined: Feb 14, 2006
Posts: 44
We have been developing an application using Struts 2.0. Acegi have been used for authentication. When user clicks Login button he is redirected to acegi filter set in web.xml file. applicationContext-acegi.xml file is where userid and passwords are kept. To provide logout functionality user is redirected to acegi logout filter which kills the user session.

Now the issue we have been facing is, once user is authenticated and redirected to inside the application, he should not see login page until logout. If user types login page url in the same browser even if he is been authenticated, login page appears and again asks for credentials. This leads to stale sessions in the memory because most of the users don't just logout but open a new browser window everytime.

How can I implement functionality where once user is authenticated wouldn't be asked for credentials until logout by himself or session expires.

Thanks,
Nandan
 
 
subject: login and logut with Acegi
 
Similar Threads
Simple JSP Login Page Help needed
Filter URL mappings
disable "back" tab in the browser?
User Session Management
Invalid session