well, in current tomcat impl ( trunk) it does, but since its an
implementation detail which isn't guaranteed by the api contract of
HttpServletRequest, you probably should capture it explicitely.
regards
Leon
On Thu, May 15, 2008 at 5:42 PM, Christopher Schultz
<[EMAIL PROTECTED]> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Leon,
>
> Leon Rosenberg wrote:
> | On Wed, May 14, 2008 at 7:34 PM, Christopher Schultz
> | <[EMAIL PROTECTED]> wrote:
> |> -----BEGIN PGP SIGNED MESSAGE-----
> |> Hash: SHA1
> |>
> |>
> |> public class SessionKillingRequest
> |> ~ extends HttpServletRequestWrapper
> |> {
> |> ~ public SessionKillingRequest(HttpServletRequest request)
> |> ~ {
> |> ~ super(request);
> |> ~ }
> |>
> |> ~ public HttpSession getSession(boolean create)
> |> ~ {
> |> ~ if(create)
> |> ~ {
> |> ~ new Throwable("Attempted session creation").printStackTrace();
> |> ~ }
> |> ~ return null;
> |> ~ }
> |> }
> |>
> |
> | the getSession() call without parameters also creates a new session.
>
> I assumed that getSession() simply called getSession(true). Is that not
> the case? Oh, well. It's easy to implement that, too:
>
> public HttpSession getSession() { return getSession(true); }
>
> - -chris
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
>
> iEYEARECAAYFAkgsWdgACgkQ9CaO5/Lv0PC81gCeLeHT5jMJb7UtqkkkKw5wF29u
> XgUAniTukyTyJvsVewVbB5vJOWox0zJc
> =YmSa
> -----END PGP SIGNATURE-----
>
> ---------------------------------------------------------------------
> To start a new topic, e-mail: users@tomcat.apache.org
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
