Could you please help me with my problem?
We are using spring 3 and spring security.
Our problem is that we need invalidate another user's session immediately (or almost immediately) after admin locks a user in admin panel.
User could be logged in at that moment. Then the admin locks the user, and after the user tries to make any activity on server side by clicking some buttons, it will be redirected to login page and have to login again.
Is there something embedded in spring security to do so?
Maybe get somehow a logged users list, then mark particular session as invalid?