Hi Friends,
I have a java based web app,and I set the session for the user like this after he logs in:
request.getSession().getServletContext().setAttribute("user",uname);
But the problem is,if I open a different browser,I can still see the user logged in from a different computer. So,is this happening becuase of the getServletContext() ?
Please suggest what's the right way to do it.
Thanks
Hi,
Thanks for the help.
I have removed that getServletContext,and have it like this now:
request.getSession.setAttribute("user",uname);
But still,when I open a different browser the session gets carried over.
Is this application server specific thing, I am using Tomcat....i am totally confused
Thanks
In the first browser type the following line in the address bar.
javascript:document.cookie
Look for the cookie with the name JSESSIONID and note down the cookie value.
When you open a new browser and navigate to your web app do the same thing. If the two JSESSIONID values are the same then the browser's are sharing the session cookie and the session.
