That works, but I'd use a servlet to manage all page accesses and a request dispatcher so that the user's machine doesn't know that it's been redirected.
--mikej -=----- mike jackson [EMAIL PROTECTED] > -----Original Message----- > From: Dan Lipofsky [mailto:[EMAIL PROTECTED]] > Sent: Thursday, August 29, 2002 9:48 AM > To: Tomcat Users List > Subject: Re: Log out Screen > > > Set the timeout in web.xml inside the <web-app> tags like this > <session-config> > <session-timeout> > 720 <!-- 720 minutes = 12 hrs --> > </session-timeout> > </session-config> > > To check for the timeout, store something in the session > when they log in, like this > session.putValue(StringConstants.USER_DATA,userInfo); > and then check it on each page like this > if (session.getValue(StringConstants.USER_DATA) == null) { > // redirect > } > > - Dan > > > Where is the session time out set? and how do I redirect it to a > > logout page once the session times out? > > > > -- > To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
