May I know how to enable multiple web applications in the same server to share the same session data?
I have webapp1 and webapp2 deployed in the same WebLogic Server (I am using WLS 8.1 sp3). When the user logon from webapp1, the session is ceated. But when the user navigate to webapp2, another new session is created. I am using HttpSession.getSession() for both applications.
The HttpSession object is scoped at the application ( or servlet context level) , therefore I think there is no way to share session data betwwen 2 web application even though they are deployed in same servlet container.
Ensuring that one web application can't access data belonging to another is part of the security concious design of the API. The designers wanted a situation in which an application can be installed in any server without worrying about conflicts.