You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@shiro.apache.org by sudheer kumar komirishetty <ko...@gmail.com> on 2013/01/07 10:47:07 UTC

User Logout for REST API

Hello Everyone,

I am exposing a REST API using apache cxf for login and logout, which would
be used by php code.

During the user login, php calls the REST service, within which we
authenticate and send the roles-permission mapping as response, which would
be cached on php side for that session.

During logout, php code clears the cached information. My question is :  do
we need to clear the ThreadContext / cached information in the backend as
well or would it automatically get flushed since REST calls are stateless.

Regards,
Sudheer.