From 021f079d42e0d61b1798c39100b92e13df7b92c0 Mon Sep 17 00:00:00 2001 From: Kevin Roast Date: Tue, 21 Feb 2006 08:43:02 +0000 Subject: [PATCH] . Fix for AWC-552 - Alfresco external auth session marker was being checked for after the session had already been invalidated git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@2454 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261 --- source/java/org/alfresco/web/bean/LoginBean.java | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/source/java/org/alfresco/web/bean/LoginBean.java b/source/java/org/alfresco/web/bean/LoginBean.java index 50f3b93b34..d55c3d48ae 100644 --- a/source/java/org/alfresco/web/bean/LoginBean.java +++ b/source/java/org/alfresco/web/bean/LoginBean.java @@ -352,6 +352,9 @@ public class LoginBean Map session = context.getExternalContext().getSessionMap(); User user = (User) session.get(AuthenticationHelper.AUTHENTICATION_USER); + // need to capture this value before invalidating the session + boolean externalAuth = isAlfrescoAuth(); + // Invalidate Session for this user. // This causes the sessionDestroyed() event to be processed by ContextListener // which is responsible for invalidating the ticket and clearing the security context @@ -378,7 +381,7 @@ public class LoginBean Application.setLanguage(context, this.language); } - return isAlfrescoAuth() ? "logout" : "relogin"; + return externalAuth ? "logout" : "relogin"; }