Hello! I have an application, which uses session-id's handled by URL-rewriting in a loginfilter, which checks for an existing session user object.
The user has the choice to open a new window of the application, which must get a new session-id. If the user opens this new window, there should not be a further login, because the user is already logged in and the datas (uid and password) are existing on the server. To achieve a new session-id without a relogin for an already logged in user, I did the following: I called the jsp which is needed without session-id in the URL. Loginfilter doesn't find the session user object, but the valid session-id exists in the REFERER. How can I access datas with the known session-id to get the user-object of the existing login of the user? Another way may be to send a correct URL with valid session id. This time, I had to know, how to create a new session-id without destroying the old one. Thanks for your help, kind regards, Andreas Hartmann --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
