Validating a session
This might seem bizarre, but... Assume that a request contains a session ID as a parameter. Is there a way *programmatically* to validate that session ID? In other words, the query string contains the session ID, and in a servlet I need to be able to ask the container if it is valid or not. But, for reasons that would probably make your head spin if I explained, I cannot simply allow the container to do it, I need to be able to do it from my own code. Moreover, this can't be a Tomcat-specific solution. Any takers? :) -- Frank W. Zammetti Founder and Chief Software Architect Omnytex Technologies http://www.omnytex.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Validating a session
The following is a pretty good, even if ugly, article on session ids, Frank. Very comprehensive and it should cover in some part whatever you are working on: http://www.technicalinfo.net/papers/WebBasedSessionManagement.html On 5/31/05, Frank W. Zammetti [EMAIL PROTECTED] wrote: This might seem bizarre, but... Assume that a request contains a session ID as a parameter. Is there a way *programmatically* to validate that session ID? In other words, the query string contains the session ID, and in a servlet I need to be able to ask the container if it is valid or not. But, for reasons that would probably make your head spin if I explained, I cannot simply allow the container to do it, I need to be able to do it from my own code. Moreover, this can't be a Tomcat-specific solution. Any takers? :) -- Frank W. Zammetti Founder and Chief Software Architect Omnytex Technologies http://www.omnytex.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- You can lead a horse to water but you cannot make it float on its back. ~Dakota Jack~ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: Validating a session
Thanks Jack, that's a good reference. It didn't really answer my specific question, not that I could see immediately anyway, but I solved the problem a different way anyhow, so it's all good. I bookmarked that anyway, could be a good reference down the road for something. -- Frank W. Zammetti Founder and Chief Software Architect Omnytex Technologies http://www.omnytex.com On Tue, May 31, 2005 2:51 pm, Dakota Jack said: The following is a pretty good, even if ugly, article on session ids, Frank. Very comprehensive and it should cover in some part whatever you are working on: http://www.technicalinfo.net/papers/WebBasedSessionManagement.html On 5/31/05, Frank W. Zammetti [EMAIL PROTECTED] wrote: This might seem bizarre, but... Assume that a request contains a session ID as a parameter. Is there a way *programmatically* to validate that session ID? In other words, the query string contains the session ID, and in a servlet I need to be able to ask the container if it is valid or not. But, for reasons that would probably make your head spin if I explained, I cannot simply allow the container to do it, I need to be able to do it from my own code. Moreover, this can't be a Tomcat-specific solution. Any takers? :) -- Frank W. Zammetti Founder and Chief Software Architect Omnytex Technologies http://www.omnytex.com - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- You can lead a horse to water but you cannot make it float on its back. ~Dakota Jack~ - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]