RE: SSO cookie expiration question
Thanks for the response
I am attaching here with my realm and login module code
From: Shing Wai Chan [mailto:shing.wai.chan...]
Sent: Tuesday, June 07, 2011 9:09 AM
To: Thakur, Ajay K.
Subject: Re: SSO cookie expiration question
You may like to send emails to firstname.lastname@example.org as there are
many experts in the alias.
In your case, you may like to check the implementation of your custom
Shing Wai Chan
On 6/7/11 8:04 AM, Thakur, Ajay K. wrote:
> Hi Chan,
> I was able to implement SSO functionality with Logout functionality. Once user logout from one application, he is logged out of all the applications. I used HTTPSession.invalidate().
> However the applications are not asking for user credentials after invalidating session. I see in my debug code that "authenticateUser" from CustomLoginModule is called and user is automatically authenticated.
> We have a requirement where user's need to be prompted for credentials (username/password) and I am not able to figure out how to force Glassfish to do so. This is a very urgent requirement and is stopping our project to get deployed.
> Your help in this regards is greatly greatly appreciated.
> :-) Ajay
> -----Original Message-----
> From: Shing Wai Chan [mailto:shing.wai.chan...]
> Sent: Monday, June 06, 2011 8:57 AM
> To: Thakur, Ajay K.
> Cc: email@example.com
> Subject: Re: SSO cookie expiration question
> Are you looking at virtual server level SSO? GlassFish 3.1 already has that?
> Shing Wai Chan