Hello,
I've set up Turbine 2.3.1.
When I login and then go back to the login form without logging out, and login as another user, the username changes, but the ACL remains the same!
Is it a bug or a feature? :-)
To work around I did the following:
------------------------------------ package org.apache.turbine.app.M.modules.actions;
import org.apache.turbine.modules.actions.LogoutUser; import org.apache.turbine.util.RunData; import org.apache.turbine.util.security.TurbineSecurityException;
public class LoginUser extends org.apache.turbine.modules.actions.LoginUser {
public void doPerform(RunData data) throws TurbineSecurityException {
LogoutUser logout=new LogoutUser();
logout.doPerform(data);
data.setMessage("");
super.doPerform(data);
}
}
-------------------------------------
Just invoking data.setACL(null) before loging in didn't help!
regards,
Joachim
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
