This week's book giveaway is in the Clojure forum.
We're giving away four copies of Clojure in Action and have Amit Rathore and Francis Avila on-line!
See this thread for details.
Win a copy of Clojure in Action this week in the Clojure forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Login mechanism using JAVA

 
himanshu patel
Ranch Hand
Posts: 205
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi All,
I have a problem related to the login mechanism.
Currently, I am working on one j2ee application, which uses login mechanism to allow user
gain access of application. Now I need to do the following.
If user logs in with his/her own username/password from one PC, then
(1) Application should not allow logging in with same username/password from other PC.
(2) Application should not allow logging in with same username/password from same PC using
another browser window.
(3) Application should able to handle unexpected log out like shutting down PC, crashing browser window, accident killing of browser window etc.
I am using JSP, servlet, EJB with Oracle 9IAS as application server on appache web server.
Using oracle 8I database.
Can anyone suggest me what could be the possible solutions to implement this efficiently.
Any suggestion is highly appreciated.
Thanks in advance.
Himanshu
 
SJ Adnams
Ranch Hand
Posts: 925
  • 0
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
If you change the requirements a wee bit it's straightforward.

(2) Application should not allow logging in with same username/password from same PC using another browser window.

If they click on a link and use 'open link in new window' its pretty difficult (impossible?) to see this from the backend. I guess javascript may be able to help you here.
(1) Application should not allow logging in with same username/password from other PC.

Logging in with same user name, logs off any existing sessions with that same name. Thats much better & more failsafe.
---
Sounds like whoever came up with the requirements has a rough idea of what they want, but doesn't understand the technology you are implementing this on.
I can't see how they can complain about modifying the requirements to suit the underlying technology?
 
I agree. Here's the link: http://aspose.com/file-tools
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic