Hi All, I have a problem related to the login mechanism. Currently, I am working on one j2ee application, which uses login mechanism to allow user gain access of application. Now I need to do the following. If user logs in with his/her own username/password from one PC, then (1) Application should not allow logging in with same username/password from other PC. (2) Application should not allow logging in with same username/password from same PC using another browser window. (3) Application should able to handle unexpected log out like shutting down PC, crashing browser window, accident killing of browser window etc. I am using JSP, servlet, EJB with Oracle 9IAS as application server on appache web server. Using oracle 8I database. Can anyone suggest me what could be the possible solutions to implement this efficiently. Any suggestion is highly appreciated. Thanks in advance. Himanshu
If you want to become a rich, do not work for others but make others to work for you.
Joined: Sep 28, 2001
If you change the requirements a wee bit it's straightforward.
(2) Application should not allow logging in with same username/password from same PC using another browser window.
(1) Application should not allow logging in with same username/password from other PC.
Logging in with same user name, logs off any existing sessions with that same name. Thats much better & more failsafe. --- Sounds like whoever came up with the requirements has a rough idea of what they want, but doesn't understand the technology you are implementing this on. I can't see how they can complain about modifying the requirements to suit the underlying technology?