Some extreme financial sites only allow one session per user. They track in their database when a user logs in, and the user must remain on that session ID for X minutes or log out.
Consequences: 1. If the user shuts his browser by accident, ooops! X minutes must pass until the original session times out. See step 2. 2. Any other login attempt is denied until original session times out. Of interest to you? Paul On Wed, Dec 30, 2009 at 12:28 AM, <bharatesh.huchchanna...@wipro.com> wrote: > Handle means > 1. Detect when session is being copied from browser to browser > 2. Direct user to login page if session is copied in 'CTRL+N'ed page > > Paul Benedict-2 wrote: >> >> What does "handle" mean to you here? >> >> On Wed, Dec 30, 2009 at 12:05 AM, Struts-User >> <bharatesh.huchchanna...@wipro.com> wrote: >>> >>> Hi All - Is there any way in Struts2 to handle session sharing across >>> browsers. >>> My problem: >>> User logs in -> session created, user does CTRL+N and opens child window >>> now he logs in as admin-> session created (it does not create new >>> session) >>> and now parent window has the admin session, and session data is of >>> admin. >>> This problem is seen only when browser windows are opened by CTRL+N. >>> >>> Please suggest.... >>> -- >>> View this message in context: >>> http://old.nabble.com/Is-there-any-way-in-Struts2-to-handle-session-sharing-accross-browsers-tp26964416p26964416.html >>> Sent from the Struts - User mailing list archive at Nabble.com. >>> >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: user-unsubscr...@struts.apache.org >> For additional commands, e-mail: user-h...@struts.apache.org >> >> >> > Quoted from: > http://old.nabble.com/Is-there-any-way-in-Struts2-to-handle-session-sharing-accross-browsers-tp26964416p26964469.html > > --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org
