tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Shapira, Yoav" <>
Subject RE: Obtaining authenticate principal from HttpSession...
Date Tue, 13 May 2003 14:10:02 GMT

A Principal doesn't always correspond one to one to a session, so your
design is flawed.  In your request wrapper, you can manually stuff the
Principal into the session as an attribute if you'd like.

Yoav Shapira
Millennium ChemInformatics

>-----Original Message-----
>From: Rob Tomlin []
>Sent: Tuesday, May 13, 2003 10:01 AM
>To: Tomcat Users List
>Subject: Obtaining authenticate principal from HttpSession...
>Is it possible, given a HttpSession object, to determine the
>corresponding Principal ?
>This follows on from my other post about getting a HttpSession
>based on the Id.
>What I want to achieve is, based on a session Id, I wish to foward
>a request using RequestDispatcher.forward(...), but as a different
>I have subclassed HttpServletRequestWrapper so I can override
>and getUserPrincipal(...), but current I am not sure how to implement
>getUserPrincipal to return the Principal that corresponds to the
>I have obtained based on an Id.
>Rob Tomlin
>To unsubscribe, e-mail:
>For additional commands, e-mail:

This e-mail, including any attachments, is a confidential business communication, and may
contain information that is confidential, proprietary and/or privileged.  This e-mail is intended
only for the individual(s) to whom it is addressed, and may not be saved, copied, printed,
disclosed or used by anyone else.  If you are not the(an) intended recipient, please immediately
delete this e-mail from your computer system and notify the sender.  Thank you.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message