tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alexandros Kotsiras" <kotsi...@mediaondemand.com>
Subject RE: Session Tracking
Date Tue, 30 May 2000 17:29:22 GMT
You will have to use the HttpSessionContext Interface which allows you to
get a session object from the sessionID.
The problem is that this approach was deprecated in the 2.1 API because
probably it is a security risk to retrieve sessions given a session ID.
Unfortunatelly there is no other way, and it seems that the Servlet Engine
HAS to support URL rewriting , otherwise session tracking with cookies
disabled is imposible.
I hope that URLRewriting will be supported in the next version of Tomcat.
It's strange that it is not working in the current version because in
JServ1.1 URLRewriting was working fine..

-----Original Message-----
From: Naga Yerramsetti [mailto:naga@tems.com]
Sent: Tuesday, May 30, 2000 1:01 PM
To: tomcat-user@jakarta.apache.org
Subject: Session Tracking


Is there a way to hold a session even if the server won't support the URL
rewriting and browser doesn't allow cookies.

Can I include session ID as a hidden parameter and get the session using
session ID in the next page.
If so, how can I get the session using the sessionID.

Thanks in advance,
Naga


--------------------------------------------------------------------------
To unsubscribe, email: tomcat-user-unsubscribe@jakarta.apache.org
For additional commmands, email: tomcat-user-help@jakarta.apache.org


Mime
View raw message