bobh 2002/08/29 15:23:38
Modified: catalina/src/share/org/apache/catalina/session
StandardSession.java
Log:
- fix for some of bug 12147 Namely, logout() was deferring to the
SingleSignOn bit to perform the logout - however if SingleSignOn isn't
being used then the current logout() implementation doesn't do squat.
Now it correctly invalidates the current session when SingleSignOn
isn't present.
Revision Changes Path
1.5 +10 -6
jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/session/StandardSession.java
Index: StandardSession.java
===================================================================
RCS file:
/home/cvs/jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/session/StandardSession.java,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -r1.4 -r1.5
--- StandardSession.java 12 Aug 2002 19:12:44 -0000 1.4
+++ StandardSession.java 29 Aug 2002 22:23:38 -0000 1.5
@@ -1066,9 +1066,13 @@
throw new IllegalStateException
(sm.getString("standardSession.isNew.ise"));
-
- // kills all sessions
+ // NOTE: The SingleSignOn Valve/SessionListener will expire
+ // all sessions, if it is being used.
fireSessionEvent(Session.SESSION_DESTROYED_EVENT, "logout");
+
+ // If the SingleSignOn didnt expire it, lets do it now.
+ if (isValid)
+ expire(false);
}
--
To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]>
For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
