You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@lenya.apache.org by Apache Wiki <wi...@apache.org> on 2005/05/14 22:45:47 UTC
[Lenya Wiki] Update of "ClosedUserGroupHowto" by GregorRothfuss
Dear Wiki user,
You have subscribed to a wiki page or wiki category on "Lenya Wiki" for change notification.
The following page has been changed by GregorRothfuss:
http://wiki.apache.org/lenya/ClosedUserGroupHowto
------------------------------------------------------------------------------
...
}}}
- Important: Don't call this page logout! If you try to use "logout" as a document ID, you will not be able to edit the metadata of this page. This is a bug in Lenya, see [http://issues.apache.org/bugzilla/show_bug.cgi?id=33754]!
-
- '''Note (AndreasHartmann):''' Why shouldn't the session invalidation just be added to the existing logout usecase?
-
----
Lenya Developer's Dicussing:
- Lenya itself does not use the SessionAction from Cocoon to invalidate the session when logging out of the authoring mode. Instead it uses an XSP (see: LENYA_HOME/lenya/content/ac/logout.xsp) which keeps the session intact but just removes the User's identity from the session context. We'll have to find out if this is for a good reason or if it is just legacy.
+ Lenya itself does not use the SessionAction from Cocoon to invalidate the session when logging out of the authoring mode. Instead it uses an XSP (see: LENYA_HOME/lenya/content/ac/logout.xsp) which invalidates the session upon logout.
'''Note (AndreasHartmann): ''' This is just legacy. In Lenya 1.4, the login/logout usecases have been refactored using the usecase framework, which means the deprecated XSP+action concept is not necessary anymore.
@@ -179, +175 @@
=== TODO: Implement a password reminder function ===
-
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lenya.apache.org
For additional commands, e-mail: dev-help@lenya.apache.org