Re: Session Mess
Session crossover is a common problem especially when many people log in from the same machine. The reason for this could be from caching of the browser. What you need to do is to force it to go back to the server and get the user the latest information. One way to do this is to add timestamp data and session id in the url of the page, as this is unique to the user, and if you run checks on the timestamp etc you can add extra security to your site also. This way you will be able to guarantee that the sessions will stop getting crossed and the right info gets put infront of the user. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:17 AM Subject: Session Mess Hi All, I have an application running on tomcat 4.1.24. Recently I have seen some cases where the session is getting messed up. When a user logs in , the data shown is for another user. Recently I had some session expiring problems as lot of my sessions never expired. I just fixed the bug by setting maxInactiveInterval time. Is it because of this the sessions are getting messed up or any other reason. Any help would be thankful Thanks shyam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Session Mess
Hi Matt, Thanks for the reply. I understand that if people from the same machine log in. But I see an instance when people who are from different locations getting the same session. I have two people who have uploaded files to my server and both file are same. Thanks shyam Software Engineer Adamshand Inc www.interviewexchange.com -Original Message- From: Matt Woodings [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 9:45 AM To: Tomcat Users List Subject: Re: Session Mess Session crossover is a common problem especially when many people log in from the same machine. The reason for this could be from caching of the browser. What you need to do is to force it to go back to the server and get the user the latest information. One way to do this is to add timestamp data and session id in the url of the page, as this is unique to the user, and if you run checks on the timestamp etc you can add extra security to your site also. This way you will be able to guarantee that the sessions will stop getting crossed and the right info gets put infront of the user. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:17 AM Subject: Session Mess Hi All, I have an application running on tomcat 4.1.24. Recently I have seen some cases where the session is getting messed up. When a user logs in , the data shown is for another user. Recently I had some session expiring problems as lot of my sessions never expired. I just fixed the bug by setting maxInactiveInterval time. Is it because of this the sessions are getting messed up or any other reason. Any help would be thankful Thanks shyam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Session Mess
I ever encountered this pblm at my login servlet and changing my authentication method to a synchronized method solved that problem. Hope this help shyam [EMAIL PROTECTED] 04/14/2004 09:17 PM Please respond to Tomcat Users List To: 'Tomcat Users List' [EMAIL PROTECTED] cc: Subject:Session Mess Hi All, I have an application running on tomcat 4.1.24. Recently I have seen some cases where the session is getting messed up. When a user logs in , the data shown is for another user. Recently I had some session expiring problems as lot of my sessions never expired. I just fixed the bug by setting maxInactiveInterval time. Is it because of this the sessions are getting messed up or any other reason. Any help would be thankful Thanks shyam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Session Mess
Other potential causes: - Programming errors of programmers that don't understand the impact of multi threaded programms in a servlet container on the scoping of variables. - Caching of proxies between the browser and the server. Make shure that you set the headers of the response. http://www.mnot.net/cache_docs/ http://www.jguru.com/faq/view.jsp?EID=377page=2 The real paranoic programmer attaches an unique id to each url that shall not be cached. -Original Message- From: Matt Woodings [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 3:45 PM To: Tomcat Users List Subject: Re: Session Mess Session crossover is a common problem especially when many people log in from the same machine. The reason for this could be from caching of the browser. What you need to do is to force it to go back to the server and get the user the latest information. One way to do this is to add timestamp data and session id in the url of the page, as this is unique to the user, and if you run checks on the timestamp etc you can add extra security to your site also. This way you will be able to guarantee that the sessions will stop getting crossed and the right info gets put infront of the user. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:17 AM Subject: Session Mess Hi All, I have an application running on tomcat 4.1.24. Recently I have seen some cases where the session is getting messed up. When a user logs in , the data shown is for another user. Recently I had some session expiring problems as lot of my sessions never expired. I just fixed the bug by setting maxInactiveInterval time. Is it because of this the sessions are getting messed up or any other reason. Any help would be thankful Thanks shyam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Session Mess
Ahhh, I see. This might not be a session problem but a code problem. When you are uploading, do you store this file using a tmp file or something similar ... check for synchronization problems, and also check for files with the same name, i.e. does the files contents start with one set of data and finish with another. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:34 AM Subject: RE: Session Mess Hi Matt, Thanks for the reply. I understand that if people from the same machine log in. But I see an instance when people who are from different locations getting the same session. I have two people who have uploaded files to my server and both file are same. Thanks shyam Software Engineer Adamshand Inc www.interviewexchange.com -Original Message- From: Matt Woodings [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 9:45 AM To: Tomcat Users List Subject: Re: Session Mess Session crossover is a common problem especially when many people log in from the same machine. The reason for this could be from caching of the browser. What you need to do is to force it to go back to the server and get the user the latest information. One way to do this is to add timestamp data and session id in the url of the page, as this is unique to the user, and if you run checks on the timestamp etc you can add extra security to your site also. This way you will be able to guarantee that the sessions will stop getting crossed and the right info gets put infront of the user. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:17 AM Subject: Session Mess Hi All, I have an application running on tomcat 4.1.24. Recently I have seen some cases where the session is getting messed up. When a user logs in , the data shown is for another user. Recently I had some session expiring problems as lot of my sessions never expired. I just fixed the bug by setting maxInactiveInterval time. Is it because of this the sessions are getting messed up or any other reason. Any help would be thankful Thanks shyam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: Session Mess
Hi Matt, I am doing this file upload in servlet using Orielly multipart. I am not using any temp file but directly upload the file to my file system. And I rename the files with the current time stamp in the file name. Thanks Shyam -Original Message- From: Matt Woodings [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 10:33 AM To: Tomcat Users List Subject: Re: Session Mess Ahhh, I see. This might not be a session problem but a code problem. When you are uploading, do you store this file using a tmp file or something similar ... check for synchronization problems, and also check for files with the same name, i.e. does the files contents start with one set of data and finish with another. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:34 AM Subject: RE: Session Mess Hi Matt, Thanks for the reply. I understand that if people from the same machine log in. But I see an instance when people who are from different locations getting the same session. I have two people who have uploaded files to my server and both file are same. Thanks shyam Software Engineer Adamshand Inc www.interviewexchange.com -Original Message- From: Matt Woodings [mailto:[EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 9:45 AM To: Tomcat Users List Subject: Re: Session Mess Session crossover is a common problem especially when many people log in from the same machine. The reason for this could be from caching of the browser. What you need to do is to force it to go back to the server and get the user the latest information. One way to do this is to add timestamp data and session id in the url of the page, as this is unique to the user, and if you run checks on the timestamp etc you can add extra security to your site also. This way you will be able to guarantee that the sessions will stop getting crossed and the right info gets put infront of the user. Matt - Original Message - From: shyam [EMAIL PROTECTED] To: 'Tomcat Users List' [EMAIL PROTECTED] Sent: Wednesday, April 14, 2004 8:17 AM Subject: Session Mess Hi All, I have an application running on tomcat 4.1.24. Recently I have seen some cases where the session is getting messed up. When a user logs in , the data shown is for another user. Recently I had some session expiring problems as lot of my sessions never expired. I just fixed the bug by setting maxInactiveInterval time. Is it because of this the sessions are getting messed up or any other reason. Any help would be thankful Thanks shyam - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
