-Ursprüngliche Nachricht-
Von: Leon Rosenberg [mailto:[EMAIL PROTECTED]
Gesendet: Donnerstag, 6. Oktober 2005 07:43
An: Tomcat Users List; Mark
Betreff: Re: custom session manager
On 10/6/05, Mark [EMAIL PROTECTED] wrote:
basically, I want to prevent users from logging
On 10/6/05, Tobias Meyer [EMAIL PROTECTED] wrote:
Or, cou could add a static hashmap to your Servlet (or a bean if using JSPs)
where you simply add the sessions with every request. You would have to put
an attribute implementing javax.servlet.http.HttpSessionActivationListener
in each session
-Ursprüngliche Nachricht-
Von: Leon Rosenberg [mailto:[EMAIL PROTECTED]
Gesendet: Donnerstag, 6. Oktober 2005 11:20
An: Tomcat Users List
Betreff: Re: custom session manager
On 10/6/05, Tobias Meyer [EMAIL PROTECTED] wrote:
Or, cou could add a static hashmap to your Servlet
Betreff: Re: custom session manager
On 10/6/05, Tobias Meyer [EMAIL PROTECTED] wrote:
Or, cou could add a static hashmap to your Servlet (or a
bean if using JSPs)
where you simply add the sessions with every request. You
would have to put
an attribute implementing
sessions for the same user. = Max. one
active session per user.
-Ursprüngliche Nachricht-
Von: Leon Rosenberg [mailto:[EMAIL PROTECTED]
Gesendet: Donnerstag, 6. Oktober 2005 16:11
An: Tomcat Users List
Betreff: Re: custom session manager
Sorry, aber how exactly does it solves
On 10/6/05, Tobias Meyer [EMAIL PROTECTED] wrote:
The problem is AFAIK, that you cannot access the list of all sessions
through the servlet-api.
That feature was in the servlet-api at some time, but was removed, IIRC due
to security issues.
If you have a list of all sessions, you can easily
There is one problem with this approach. Load balancing/clustering.
If you have a HashMap in one tomcat JVM, how does that information get
propogated to other JVM's possibly on other machines?
Thank you by the way for all the inputs so far
On 10/6/05, Leon Rosenberg [EMAIL PROTECTED]
a custom session manager. So maybe I am
missing something, but how would I go about writing this for tomcat?
I know I am being very vague, but how much work am I potentially
signing myself up for here if I wanted to create a custom session
manager?
Thank you
since the 3.x days, I have been very impressed with
the amount of flexibility and configuration options that I have
available to me.
One part of the tomcat design that I do not believe is very flexible
is the ability to set up a custom session manager. So maybe I am
missing
using tomcat since the 3.x days, I have been very impressed with
the amount of flexibility and configuration options that I have
available to me.
One part of the tomcat design that I do not believe is very flexible
is the ability to set up a custom session manager. So maybe I am
From: Mark [mailto:[EMAIL PROTECTED]
Subject: Re: custom session manager
basically, I want to prevent users from logging in and creating a
second session if a valid session for that user already exists.
Why? Some strange security issue? Resource consumption? An anti-DoS
measure
On 10/6/05, Mark [EMAIL PROTECTED] wrote:
basically, I want to prevent users from logging in and creating a
second session if a valid session for that user already exists.
For instance.
1. Log in to my web app, session is created
2. browse around in my web app
3. close browser, do not
[EMAIL PROTECTED] wrote:
After using tomcat since the 3.x days, I have been very impressed with
the amount of flexibility and configuration options that I have
available to me.
One part of the tomcat design that I do not believe is very flexible
is the ability to set up a custom session manager
After using tomcat since the 3.x days, I have been very impressed with
the amount of flexibility and configuration options that I have
available to me.
One part of the tomcat design that I do not believe is very flexible
is the ability to set up a custom session manager. So maybe I am
missing
14 matches
Mail list logo
