• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

Session scoped forms in Struts

 
Ranch Hand
Posts: 185
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Does Struts have a built-in mechanism to prevent mutliple windows of a session
scoped form to not refer to the same session i.e.

1. Go to a JSP (with session scoped form)
2. In IE, <CTRL> + N, open a new window.
3. Press submit in original window and new window. (Both use same session..)

Is it possible for them to use a different session.?
 
Greenhorn
Posts: 11
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Hi Alok,

I think the closest Struts comes to providing something like what you want is the saveToken() and isTokenValid() methods in the Action class. You could use these methods to prevent a user from accessing a sensitive area from more than one window. There is a bit more information here: http://www.jaxmagazine.com/itr/online_artikel/psecom,id,648,nodeid,147.html

You could create two sessions (or more) for the same user quite easily if you were only using URL rewriting to track sessions. With cookies though it would be much more difficult.

Hope that helps.
[ June 08, 2005: Message edited by: Ryan Dillon ]
 
reply
    Bookmark Topic Watch Topic
  • New Topic