session-management

How to configure a maximum duration of an application session in Tomcat?

不羁的心 提交于 2020-05-13 07:39:43
问题 I need to configure a maximum duration of an application session in Tomcat to 24 hours. I was not able to find the appropriate configuration in the documentation: https://tomcat.apache.org/tomcat-8.5-doc/config/http.html (There is sessionTimeout for SSLHostConfig but I need the Connector configuration; We terminate the SSL connection in the WebServer before Tomcat but the session management handled by Tomcat.) Added We already handled the session expiration timeout (Tomcat Session Timeout web

Session is different if flash uploads photo to the aspx page

随声附和 提交于 2020-03-23 17:38:33
问题 I have a aspx called user-photo-upload.aspx and another aspx called get-photo.aspx. I set the Session["PhotoId"] in the page_load method of user-photo-upload.aspx. If I visit the user-photo-upload.aspx through the browser normally, the session can be retrieved in get-photo.aspx. But if the flash uploads photo to the user-photo-upload.aspx page, I can't get the Session["PhotoId"] in get-photo.aspx. I discover that the Session ID is different when visiting the page using browser normally or by

Session is different if flash uploads photo to the aspx page

拜拜、爱过 提交于 2020-03-23 17:37:25
问题 I have a aspx called user-photo-upload.aspx and another aspx called get-photo.aspx. I set the Session["PhotoId"] in the page_load method of user-photo-upload.aspx. If I visit the user-photo-upload.aspx through the browser normally, the session can be retrieved in get-photo.aspx. But if the flash uploads photo to the user-photo-upload.aspx page, I can't get the Session["PhotoId"] in get-photo.aspx. I discover that the Session ID is different when visiting the page using browser normally or by

Why doesn't FB.login delete the logout cookie?

僤鯓⒐⒋嵵緔 提交于 2020-01-13 20:37:01
问题 I have a problem with Facebook authentication logic: On home page load, I call getLoginStatus() and if I get "connected" , I redirect the user to his account page. If not, the user can click the login button that calls FB.login() . If the user is logged in and then navigates back to home page (full page load), getLoginStatus() there returns "connected" as expected and user gets bounced back to account page. However, when the logged in user calls FB.logout() and repeats steps 1-2, the 2nd step

Spring MVC @Sessionattributes issue in multiple browser tabs

我是研究僧i 提交于 2019-12-23 05:11:29
问题 We are using latest version of spring. . We are uding @Sessionattributes of spring mvc to stote data in session scope.. The problem is it not working as expected when we are working with multiple tabs of the browser. . We have a search page that allows the use to search the database using multiple fields..We are storing the results in session using @Sessionattributes. Problem: For example user gives some input and searches and results are stored in session with name "searchresults". If the

Implementing own Session Management in ASP.NET

邮差的信 提交于 2019-12-22 00:14:38
问题 What options are there to implement an own session management in ASP.NET? I just found one older solution about "highjacking" the built-in session management. Is there a nice way to implement a component which performs all session tasks? How can i include a class which receives the HTTP Request and Response during one request process? Thanks for your help Regards Michael 回答1: You need two things, implement the IHttpSessionState and a HttpModule. In the HttpModule you hook the applications

Nhibernate, WinForms, Castle Windsor: Session Management

依然范特西╮ 提交于 2019-12-21 06:01:10
问题 I know the question of session management has been brought up in the past, but I could not find anything that helps me overcome my problem.. I have a number of repository classes (e.g CustomerRepository, ProductRepository etc.) which I resolve through Castle Windsor (Note: I am trying to apply the three calls pattern as outlined here). I figure I'd best have a session per Presenter (in my case, this is equivalent to one per form), however, the repository classes need to access the session for

Session Management using Spring Security: Concurrent sessions

半城伤御伤魂 提交于 2019-12-21 02:51:08
问题 I have developed a web application using spring security. For login it gets access from LDAP. Now I want to manage the session using spring security itself, I can see by using authentication.getName() I am getting the username and I can also get the sessionID . Now I want to make sure if the same user is trying to login from the same system using some other browser he should get a message saying that he is already login in his account. Can anyone give an idea how to achieve this ????

Session Management using Spring Security: Concurrent sessions

自作多情 提交于 2019-12-21 02:51:07
问题 I have developed a web application using spring security. For login it gets access from LDAP. Now I want to manage the session using spring security itself, I can see by using authentication.getName() I am getting the username and I can also get the sessionID . Now I want to make sure if the same user is trying to login from the same system using some other browser he should get a message saying that he is already login in his account. Can anyone give an idea how to achieve this ????

Spring + Hibernate session management across multiple threads

旧城冷巷雨未停 提交于 2019-12-20 12:06:37
问题 I am building a system, where each request from a client side spawns multiple threads on server side. Each thread then is using one or more DAOs (some DAOs can be used by more than one thread at the time). All DAOs are injected ( @Autowired ) to my thread classes by Spring. Each DAO receives SessionFactory injected as well. What would be proper way of managing Hibernate sessions across these multiple DAOs so I would not run into problems because of multithreaded environment (e.g. few DAOs