Hello, I have an application runnin on Jboss 4.0.2
The users authenticate using a custom login module which reads user credentials stored in a database
I added a functionality which lets user change their password. They can go on working after changing it.
After 30 mins the cache expires and the user is (transparently) logged out, while the login module tries re-login immediately using, I presume, user credential stored in user request. These are the credentials stored before he changed his password, so re-login fails.
I fixed the problem setting a looooong time for the DefaultCacheTimeout attribute but I'm looking for a smart way to solve this.
1) is my presumption correct?
2) Is there a way to update user credentials in the browser cache (setting somehow the response)?
3) do you have any alternative hints to fix this problem?
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3898221#3898221
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3898221
Get latest updates about Open Source Projects, Conferences and News.