jQuery in Action, 2nd edition*
The moose likes Servlets and the fly likes Login mechanism using  JAVA Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Murach's Java Servlets and JSP this week in the Servlets forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "Login mechanism using  JAVA" Watch "Login mechanism using  JAVA" New topic
Author

Login mechanism using JAVA

himanshu patel
Ranch Hand

Joined: Feb 03, 2003
Posts: 205
Hi All,
I have a problem related to the login mechanism.
Currently, I am working on one j2ee application, which uses login mechanism to allow user
gain access of application. Now I need to do the following.
If user logs in with his/her own username/password from one PC, then
(1) Application should not allow logging in with same username/password from other PC.
(2) Application should not allow logging in with same username/password from same PC using
another browser window.
(3) Application should able to handle unexpected log out like shutting down PC, crashing browser window, accident killing of browser window etc.
I am using JSP, servlet, EJB with Oracle 9IAS as application server on appache web server.
Using oracle 8I database.
Can anyone suggest me what could be the possible solutions to implement this efficiently.
Any suggestion is highly appreciated.
Thanks in advance.
Himanshu


If you want to become a rich, do not work for others but make others to work for you.
SJ Adnams
Ranch Hand

Joined: Sep 28, 2001
Posts: 925
If you change the requirements a wee bit it's straightforward.

(2) Application should not allow logging in with same username/password from same PC using another browser window.

If they click on a link and use 'open link in new window' its pretty difficult (impossible?) to see this from the backend. I guess javascript may be able to help you here.
(1) Application should not allow logging in with same username/password from other PC.

Logging in with same user name, logs off any existing sessions with that same name. Thats much better & more failsafe.
---
Sounds like whoever came up with the requirements has a rough idea of what they want, but doesn't understand the technology you are implementing this on.
I can't see how they can complain about modifying the requirements to suit the underlying technology?
 
jQuery in Action, 2nd edition
 
subject: Login mechanism using JAVA
 
Similar Threads
Calling WS without having entry in User registry
login mechanism using JAVA
Developing Web Application without IE toolbars
Problem with embeded username and password in open() method of XMLHTTP object
Login mechanism using java