J2EE sessions should actually help, if I remember right J2EE sessions are automatically cleared when the browser closes.
I can't think of many ways that would result in session-leakage. Are your users reporting exactly on what pages it's happening? On Tuesday, June 24, 2014 5:41:20 PM UTC-5, Rawk wrote: > > Ugh. So I went through all my code and updated my CFLOCATION tags > immediately after I my last post in this thread. I also restarted the > server. > > Since then, I have received reports from 3 users that the issue has > cropped up again. > > Any other ideas how users might be sharing their sessions? The tokens > never appear in the URL through use of my app, so there's no way my users > are copy/pasting URLs containing tokens to each other. > > I have also determined that sometimes the users see the session that is > used either by Task Scheduler or a WGet script that runs in a loop on the > server. In brief, the WGet script is designed to work as a process queue > in order to break up large processes into smaller chunks and execute them > sequentially. This allows me the server to handle processes that take an > abnormal amount of time to execute without the server stopping execution > due to timeouts. > -- -- online documentation: http://openbd.org/manual/ http://groups.google.com/group/openbd?hl=en --- You received this message because you are subscribed to the Google Groups "Open BlueDragon" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
