|
The current implementation of the Authenticator classes doesn't provide a comprehensive way to log out of the site. However, you can accomplish a logout a couple of ways. First, you can invalidate the user's session with a call to invalidate():
HttpSession session = request.getSession(false); session.invalidate();
Another way to log out is to remove the login name:
HttpSession session = request.getSession(false); session.removeValue("com.caucho.servlet.login.name");
|