Guillaume Coté
Reputation: 2801
How do I logout from Java EE container managed security?
I am working in websphere 7.0. I use the security from the application server. I would like to removing the association with the user, so user is redirected to the login page before accessing a secure resource (and request.getUserPrincipal() returns null).
I try :
request.getSession().invalidate();
but the user principal is still associated.
How could I remove that association?
Upvotes: 1
Views: 6538
Answers (1)
Guillaume Coté
Reputation: 2801
On websphere, a special logout form calles must be used :
Here what I am using :
<body onload="javascript:document.logout.submit()">
<h2>Sample Form Logout</h2>
<form METHOD=POST ACTION="ibm_security_logout" NAME="logout">
Click this button to log out:
<input type="submit" name="logout" value="Logout">
<INPUT TYPE="HIDDEN" name="logoutExitPage" VALUE="/some url">
</form>
</body>
Upvotes: 4
Related Questions
- How to close all DB resources once the user logs out
- Logout using servlet
- WebSphere form based authentication logout mechanism not logging out
- Programmatically logout user from IBM Webseal without using redirection
- Logout code in JSP
- managed bean logout not working
- Logout user - Java EE 6 Security
- How to log out using spring-security?
- How to properly logout of a Java EE 6 Web Application after logging in
- Logout code needed