tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From S.Z...@spmv.de
Subject AW: Session problems
Date Wed, 16 Aug 2000 11:15:30 GMT
Hi,

it is correct that the objects that I have put in the session get lost,
but why doesn't the session id get invalidated?
Is that correct?

Stephan


-----Urspr√ľngliche Nachricht-----
Von: Graham Stewart [mailto:GrahamStewart@btinternet.com]
Gesendet: Mittwoch, 16. August 2000 13:03
An: tomcat-user@jakarta.apache.org
Betreff: Re: Session problems


 
As far as I'm aware invalidate() marks the session as invalid and unbinds
all objects associated with the session.

Graham

----- Original Message ----- 
From: S.Zeeh@spmv.de 
To: tomcat-user@jakarta.apache.org 
Sent: Wednesday, August 16, 2000 11:50 AM
Subject: Session problems


Hi, 
I have some questions about session id's and session in general. 
If I do a: 
HttpSession session = req.getSession(true); 
System.out.println("ID " + session.getId()); 
I get a session id like du43dew7k1: 
After a 
session.invalidate(); 
System.out.println("ID " + session.getId()); 
I get the same session id like before. 
Even another 
session = req.getSession(true); 
System.out.println("ID " + session.getId()); 
will give me the same session id. 
I this the right behavior? Do I do something wrong? 
What does the session.invalidate() method do then? 
I couldn't find anything in the specs. 
Thanks, 
Stephan 

Mime
View raw message