aspose file tools*
The moose likes Servlets and the fly likes encodeURL Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login

Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Java » Servlets
Bookmark "encodeURL" Watch "encodeURL" New topic


sitaram irrinki
Ranch Hand

Joined: Feb 16, 2005
Posts: 158
When cookies are disabled on the browser, the Set-Cookie header sent by the Container will be ignored by the browser. But when the cookie with JSessionId is generated by the container , can't we get that id (using application.log() or System.out.println(session.getId()) and can't we manually type this id after the url (Like http://localhost:7001/app/two;JSessionId=-----------) without using URL rewriting technique. I have read this is not allowed and anyhow the end user will not be able to do this.
With a little knowledge, a cast iron skillet is non-stick and lasts a lifetime.
subject: encodeURL
Similar Threads
Session management ambiguity
Session and cookies
Confusion between Cookie and JSession
disable jsession id
jsessionid in URL