Hi,
I'm trying to implement a feature that I think is missing, but I'm feeling
pretty lost in the Tomcat sources. When SSL client authentication is used, I
would like to be able to logout the user. I think this means that I need to
call invalidate() on the SSLSession (I'm using the JSSE impleme
using that session are closed.
See also the java api:
http://java.sun.com/j2se/1.5.0/docs/api/javax/net/ssl/SSLSession.html#invalidate()
Armin
Andreas Persson wrote:
> Hi,
>
> I'm trying to implement a feature that I think is missing, but I'm
> feeling pretty lost in the Tomc
