I am working on a web application. Application is having role based access. If some one logged into this application and then copy the url and paste it to another or same browser , application is opening from there without asking for authentication. I want to restrict the same as it is a security threat for the application.
I am using struts2 framework with glassfish server.
Please let me know any way to implement restriction. Thanks in advance.
The scenario explained by you ,its under comes in web security-authorization. you need to implements security constraints in web.xml files for roles.
Before writing code we need to understand web security of java ee web application.