Mark Balster wrote:
> From the javadocs for HttpServletRequest on getId() : Returns a string
> containing the unique identifier assigned to this session. The
> identifier is assigned by the servlet container and is implementation
> dependent. My question is: What is the scope for the unique
> identifier? global, servlet container life, etc.... TIA Mark Balster
> www.cdexpert.com
> www.expressdata.com
Session identifiers are scoped to the web application. It is possible
(but unlikely) that the same session ID might be generated by two
webapps, but session management still works because the cookies used to
convey the session ID back and forth are configured (setting the "path"
property of the cookie to match the context path of the webapp) to
return the correct value only to the correct webapp.
Craig McClanahan
