The context information may be stored in the user's session, which would make it hard for you to modify as an administrator.
Matt On 3/14/07, Jarek Gilewski <[EMAIL PROTECTED]> wrote:
Hi, I have two users logged in, an admin and a common use on separate sessions (on different browsers). The admin user disabled a common user account (editing user record and disabling 'Enabled' flag in Account Settings). The problem is that the common user still remains logged in and is using application functions (untill he logs out himself). Is this ok? Why the SecurityContext on the common user session is not updated when the admin change the user informations (add some rights, change his last name etc)? I thougt that userCache.removeUserFromCache(user.getUsername()) do the trick. What should be done to relode SecurityContext when the user information is changed? Thanks Jarek -- View this message in context: http://www.nabble.com/UserCache-vs-SecurityContext-tf3400798s2369.html#a9470254 Sent from the AppFuse - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
-- http://raibledesigns.com --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
