Hi, May be Spring Security will do the stuff :)
Regards, ManiKanta G twitter.com/ManiKantaG On Wed, Dec 30, 2009 at 6:43 PM, Gabriel Belingueres <belingue...@gmail.com>wrote: > Session data handling is the same for all frameworks based on the > Servlet and JSP specification, and AFAIK S2 doesn't provide any helper > to handle it differently (one exception is the token interceptor to > avoid double submits.) > > I think you should design the application specifically to handle this > case: if some user is already logged in, you can prevent him log in > again as an admin by checking some data is already present in session > scope. > > Also, it seems you have 2 login screens: one for regular users and > other for admins. Other solution can be to have only one login screen > and rework your user roles, assigning some regular users the "admin" > role too. > > HTH, > Gabriel > > 2009/12/30 Struts-User <bharatesh.huchchanna...@wipro.com>: > > > > Thanks Paul, What I mean is not exaclty one session per user rather > > preventing or detecting the session which is getting copied when any one > > does CTRL+N or in IE7 opens application new TAB. > > In above said cases session remains to be same however session data is > > replaced with the recentely logged in user's data. > > This creates problem when employee logs in one window and same employee > > tries to log as admin in CTRL+Ned window as admin which will result in > > employee session data being replaced by admin data.... > > > > > > > > -- > > View this message in context: > http://old.nabble.com/Is-there-any-way-in-Struts2-to-handle-session-sharing-accross-browsers-tp26964416p26964689.html > > Sent from the Struts - User mailing list archive at Nabble.com. > > > > > > --------------------------------------------------------------------- > > To unsubscribe, e-mail: user-unsubscr...@struts.apache.org > > For additional commands, e-mail: user-h...@struts.apache.org > > > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: user-unsubscr...@struts.apache.org > For additional commands, e-mail: user-h...@struts.apache.org > >
