On Mon, 2003-06-16 at 16:30, Jason Bainbridge wrote: > On Tue, 17 Jun 2003 05:18, Mike Curwen wrote: > > Use of META refresh tags ? > > <HTML> > > <HEAD> > > <META HTTP-EQUIV="refresh" > > content="N;URL=http://www.yoursite.com/login_expired";> > > </HEAD> > > Either that or update the session-timeout in your web.xml to a more acceptable > value
For security reasons, you may want a user to time out in a short time. If they leave a window open to a bank statememnt, say, you want the time out to invalidate the session so that another person cannot come back and continue the session without authentication. For this, the web.xml change is the only way to go. Refreshes will mean never ending sessions. Of course, you may be perfectly happy with never ending sessions. Ben Ricker Wellinx.com --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
