From: Spencer <sk...@us...> - 2003-06-25 17:43:12
|
Currently, my web app uses LDAP to authenticate. When a user changes their password in LDAP, it does not get updated in the Auth Cache (which is expected behavior), so the old password is valid until the user logs in with the new password. I found the manual entry about flushing the authentication cache, but doing so logs the user out of the app. So if I do it upon the password change, the user has to log right back in. I would do it upon logout, but there's no guarantee that the user will logout, as opposed to just closing the browser. So the question is whether or not there's a way to update a specific user's credentials in the Auth Cache without having the user forcibly logged off. TIA, Spencer |