DNewfield wrote:
>
> RajibJana wrote:
>> 1) if one opens a window and a tabbed window, logs into the application
>> by
>> giving different user id and password combinations, then two seperate
>> sessions are not created. As a result, in the session map userid
>> overrides
>> each other and same user id ( last logged in user ) is shown in all pages
>> in
>> two windows.
>
> One running browser instance shares session across all windows. Using
> Safari and Firefox in tandem will allow two sessions from one machine.
> It sounds here like you've got another problem, though--it sounds like
> your login logic is not first checking that you're *already* logged in
> in that session, and disallowing the second login until the first
> session is destroyed by logging out.
>
> Rajib>> I am using IE 7 and FF 3. The problem happens only when one opens
> a new tab or new window from a already open window, then two sessions are
> not created. I can have the login you have mentioned, but that is kind of
> restriction on user, for a large app. the app will not be of ease-of-use.
> ( Why should I open a new browser instance, when there is a option to open
> a browser tab from a opened window?).
>
>
>
>> 2) If one opens two window instances ( not tabbed one), logs into the app
>> by
>> giving different user info, then two seperate sessions are created, two
>> distinct userid is stored in two seperate sessions and each window shows
>> the
>> correct usr id in its all pages.
>
> I would like to know what browser shows this behavior. It might be a
> timing issue: If you load the login screen in two windows/tabs before
> submitting either of them, there's a chance each login form is displayed
> in such a way that they are each creating stub sessions that are fleshed
> out by that specific form on that page getting submitted. If you are
> able to witness this behavior it should not be relied upon. In fact, I
> would consider the logic that's creating those two sessions to be flawed
> since it's way too browser specific to rely upon.
>
> -Dale
>
>
> Rajib>> Its not the timeing issue. The problem is only one session is
> created when two browser tabs open the application login page.
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: user-unsubscr...@struts.apache.org
> For additional commands, e-mail: user-h...@struts.apache.org
>
>
>
--
View this message in context:
http://www.nabble.com/Struts-2-session-problem-tp21513305p21524321.html
Sent from the Struts - User mailing list archive at Nabble.com.
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscr...@struts.apache.org
For additional commands, e-mail: user-h...@struts.apache.org
