Hi Thomas, I earlier sent you an example of Login Dialog from the Application Template project.
Now about sessions: When the ULC client connects to a ULC Application deployed as a servlet, a ULC session is created. The session time out interval is specified for a ULC Application servlet in the web.xml file. If there are no requests from the client during the session time out interval, then the session times out and the ULC Application terminates. >From the client side, to keep the session alive in absence of any user interaction with the application there is a provision of "keep alive request" using which the client polls the server periodically. This request is sent to the server at "keep-alive-interval" that is specified as an parameter to the ULC client. Normally the keep-alive-interval on the client should be less than the server session time out interval to make sure that server does not terminate. You should code your Login Dialog in the start() method of your application. And once a user logs in after the application has started, "keep-alive-interval < session time out" will ensure that the server session never times out and the user remain logged in through out the session. Kindly refer to the ULC Deployment Guide and the ULC Architecture Guide to learn about session management. I hope this helps. Thanks and regards, Janak PS: While we make every effort to answer developer questions as early as possible there is no guarantee that your questions will be answered within a specified period of time unless you have bought ULC support : http://www.canoo.com/ulc/products/support.html. Developers who have bought support are given higher priority. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Thomas Fuller Sent: Thursday, May 25, 2006 9:51 PM To: [email protected] Subject: [ULC-developer] Login question Hi, is there a "best practice", or recommended way of approaching the login and session related security in a ULC application? To be more specific: if we take a look at the Canoo email client application demo, if the user's session times out, how would one approach forcing the user to login again? I would expect that any user interaction with the application would cause a login dialog to appear, but I'm not sure how this would be implemented. In one of our web applications here (note that this is not a ULC application), we implement a servlet filter which checks if the user has been logged in; if they haven't, they are forwarded to a login page. I'd like to do something similar in our ULC demo application, and I wanted to ask if something as easy as adding a servlet filter would be possible? I don't want to have session checking spread all over the application, since this would get quite messy. Does anyone have any thoughts on this? Thanks for your help, Tom _____________________________________________________________________ This message has been checked for all known viruses for Frontline Ltd by the MessageLabs Virus Scanning Service. _____________________________________________________________________ This e-mail message and any attachment(s) are CONFIDENTIAL and may contain legally privileged information. If you are not the intended recipient you should not read, copy, distribute, disclose or otherwise use the information in this e-mail or any attachment(s). Please also e-mail, telephone or fax us immediately and delete the message and any attachment(s) from your system. E-mail may be susceptible to data corruption, interception and unauthorised amendment, and we do not accept liability for any such corruption, interception or amendment or the consequences thereof. Please note that any views expressed in this email may be those of the originator and do not necessarily reflect those of this organisation. _____________________________________________________________________ Frontline on the Web : http://www.frontline.ltd.uk _____________________________________________________________________ _______________________________________________ ULC-developer mailing list [email protected] http://lists.canoo.com/mailman/listinfo/ulc-developer
