Why do you expect that the session already exists so that you have to
invalidate it? Does spring-security create it automatically?
> Session s = _request.getSession(false);
> s.invalidate();
> s = _request.getSession(true);
--
View this message in context:
http://www.nabble.com/tapestry-spring-security%3A-how-to-set-ASO-on-successful-login--tp20865863p20888463.html
Sent from the Tapestry - User mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
