Problem in SessionManagement in Struts

Hii,,

I am having a problem doing session management in Struts.....After logging out the user has to be directed to login page. and invalidate the session..This i am doing through logoff action class...Also after logging i need to make sure that user cannot see the contents of jsp page rather be directed to login page...here is m login action class..
package com.ibm.ankurstruts.actions; import java.sql.Connection; import java.sql.DriverManager; import java.sql.ResultSet; import java.sql.Statement; //import java.util.HashMap; //import java.util.Locale; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; //import javax.mail.*; //import java.util.Locale; //import org.apache.struts.util.*; //import com.ibm.ankurstruts.resources.*; import org.apache.struts.action.Action; import org.apache.struts.action.ActionError; import org.apache.struts.action.ActionErrors; import org.apache.struts.action.ActionForm; import org.apache.struts.action.ActionForward; import org.apache.struts.action.ActionMapping; import org.apache.struts.util.MessageResources; import com.ibm.ankurstruts.data.UserDetails; import com.ibm.ankurstruts.forms.Logonform; //import com.ibm.ankurstruts.resources.*; /** * @version 1.0 * @author */ public class LogonAction extends Action { public ActionForward execute(ActionMapping mapping, ActionForm form, HttpServletRequest request, HttpServletResponse response) throws Exception { ActionErrors errors = new ActionErrors(); ActionForward forward = new ActionForward(); // return value Logonform logonform = (Logonform)form; String username=logonform.getUsername(); String pass=logonform.getPassword(); String clientID=logonform.getIdtype(); System.out.println(username); System.out.println(pass); System.out.println(clientID+"..."); // String lang=logonform.getLanguage(); //String langu=logonform.getLanguage(); //MessageResources msg=getResources(request); // Locale mylocal=new Locale("en","US"); //MessageResources strutsBundle=getResources(request); //tring str=strutsBundle.getString("ankur"); // String str=strutsBundle.getMessage("ankur"); //System.out.println(str); //String str=strutsBundle.getConfig(); // HashMap hm=(HashMap)strutsBundle; //System.out.println(strutsBundle); String idtype1="client"; String idtype2="TPA"; String idtype3="TPAAdmin"; //String idtype=logonform.getIdtype(); // String idtype=logonform.getIdtype(); Connection conn=null; Statement stmt=null; ResultSet rs=null; String sql; String str1; String str2; String str3; int flag=0; String sessionid; try { String driver="com.ibm.db2.jcc.DB2Driver"; String url="jdbc:db2:ICEP"; String userID="Administrator"; String password="marc0nig"; Class.forName(driver).newInstance(); conn= DriverManager.getConnection(url, userID, password); System.out.println("Connection successful.."); sql="select loginid,password,clienttype from schema.allusers"; stmt=conn.createStatement(); rs=stmt.executeQuery(sql); System.out.println("INDYAROCKSSSS"); while(rs.next()){ //System.out.println(username); str1=rs.getString(3); str1=str1.trim(); str2=rs.getString(1).trim(); str3=rs.getString(2).trim(); //rs.getString(3)=rs.getString(3).trim(); System.out.println(rs.getString(1)+"..."); System.out.println(rs.getString(2)+"...."); System.out.println(rs.getString(3)+"..."); System.out.println(str1+"...."); if(str1.equalsIgnoreCase(clientID)){ if(rs.getString(1).equals(username) && rs.getString(2).equals(pass)){ System.out.println("The user is correct"); //sessionid=request.getSession().getId(); //System.out.println(sessionid); //forward = mapping.findForward("success"); flag=1; if(str1.equalsIgnoreCase(idtype1)){ HttpSession session=request.getSession(true); UserDetails userinfo=new UserDetails(); if(session.isNew()){ System.out.println("This session is new"); //session=request.getSession(); }else{ System.out.println("WelcomeBack"); } userinfo.setIdtype(clientID); userinfo.setPassword(pass); userinfo.setUsername(username); session.setAttribute("USER",userinfo); session.setAttribute("USERNAME",username); session.setAttribute("loggedin",new String("true")); // Forward control to the appropriate 'success' URI (change name as desired) sessionid=session.getId(); System.out.println(sessionid); forward = mapping.findForward("success"); break; } if(str1.equalsIgnoreCase(idtype2)){ System.out.println("HAHAHAHAHA"); HttpSession session=request.getSession(true); UserDetails userinfo=new UserDetails(); if(session.isNew()){ System.out.println("This session is new"); //session=request.getSession(); }else{ System.out.println("WelcomeBack"); } // synchronized{ userinfo.setIdtype(clientID); userinfo.setPassword(pass); userinfo.setUsername(username); session.setAttribute("USER",userinfo); session.setAttribute("USERNAME",username); session.setAttribute("loggedin",new String("true")); sessionid=session.getId(); System.out.println(sessionid); forward = mapping.findForward("success1"); break; // } } if(str1.equalsIgnoreCase(idtype3)){ System.out.println("HEHEHEHEHE"); HttpSession session=request.getSession(true); UserDetails userinfo=new UserDetails(); if(session.isNew()){ System.out.println("This session is new"); }else{ System.out.println("WelcomeBack"); } //synchronized{ userinfo.setIdtype(clientID); userinfo.setPassword(pass); userinfo.setUsername(username); session.setAttribute("USER",userinfo); session.setAttribute("USERNAME",username); session.setAttribute("loggedin",new String("true")); forward = mapping.findForward("success2"); break; //} } //break; } } // do something here } } catch (Exception e) { // Report the error using the appropriate name and ID. errors.add("name", new ActionError("id")); } // If a message is required, save the specified key(s) // into the request for use by the <struts:errors> tag. if (!errors.isEmpty() || flag==0) { saveErrors(request, errors); // Forward control to the appropriate 'failure' URI (change name as desired) forward = mapping.findForward("failure"); } // } // Finish with return (forward); } } .

My logoff action class is as follows
package com.ibm.ankurstruts.actions; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; import org.apache.struts.action.Action; import org.apache.struts.action.ActionError; import org.apache.struts.action.ActionErrors; import org.apache.struts.action.ActionForm; import org.apache.struts.action.ActionForward; import org.apache.struts.action.ActionMapping; /** * @version 1.0 * @author */ public class LogoffAction extends Action { public ActionForward execute(ActionMapping mapping, ActionForm form, HttpServletRequest request, HttpServletResponse response) throws Exception { ActionErrors errors = new ActionErrors(); ActionForward forward = new ActionForward(); // return value /* try { // do something here } catch (Exception e) { // Report the error using the appropriate name and ID. errors.add("name", new ActionError("id")); } // If a message is required, save the specified key(s) // into the request for use by the <struts:errors> tag. if (!errors.isEmpty()) { saveErrors(request, errors); // Forward control to the appropriate 'failure' URI (change name as desired) // forward = mapping.findForward(failure"); } else {*/ // Forward control to the appropriate 'success' URI (change name as desired) //request.getSession().invalidate(); HttpSession session=request.getSession(false); String sessionid=request.getSession().getId(); System.out.println(sessionid); // String s=(String)session.getAttribute("SessionID"); //System.out.println(s); session.invalidate(); //session.removeAttribute("USERNAME"); // session.removeAttribute("PASSWORD"); //session.removeAttribute("IDTYPE"); //session.removeAttribute("SessionID"); //request.getSession().removeValue(sessionid); //request.getSession().removeAttribute(sessionid); //String d=(String)session.getAttribute("SessionID"); //System.out.println(d); //HttpSession sid1=request.getSession(false); //String sid=(String)sid1.getId(); //System.out.println(sid); forward = mapping.findForward("success"); // } // Finish with return (forward); } }

In all the action classes i am checking whether the (String)session.getAttribute("loggedin")==true...If not i am redirecting it to login page...This works fine...But in my jsp i am trying the same thing...
<%if(((String)session.getAttribute("loggedin")).equals("true")){System.out.println("CHIRKUT");%><jsp:forward page="/login.jsp"/><%}%>

Its giving Illegal State Exception....Cannot FORWARD..The response already committedI am using a simple tile template for each of my page...one of the page is
PreAuthorization.jsp <%@page language="java" contentType="text/html; charset=ISO-8859-1" pageEncoding="ISO-8859-1"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-tiles" prefix="tiles"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-html" prefix="html"%> <tiles:insert definition="template"> <tiles:put name="menu" value="/tilesContent/homepage_menu.jsp" type="page"></tiles:put> <tiles:put name="header" value="/tilesContent/header.jsp" type="page"></tiles:put> <tiles:put name="bottom" value="/tilesContent/bottom.jsp" type="page"></tiles:put> <tiles:put name="title" value="PreAuthorization" direct="true" type="string"></tiles:put> <tiles:put name="body" value="/tilesContent/PreAuthorization_body.jsp" type="page"></tiles:put> </tiles:insert>
PreAuthorization_body.jsp <%@page language="java" contentType="text/html; charset=ISO-8859-1" pageEncoding="ISO-8859-1"%> <%@ page buffer="256k" %> <%@taglib uri="http://jakarta.apache.org/struts/tags-html" prefix="html"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-bean" prefix="bean"%> <%if(((String)session.getAttribute("loggedin")).equals("true")){System.out.println("CHIRKUT");%><jsp:forward page="/login.jsp"/><%}%> <html:errors /> <br> <html:form action="/PreAuthorization"> <table> <tbody> <tr> <td align="left"><bean:message key="proposer.id" /></td> <td width="5"> </td> <td><html:text property="proposerID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="proposer.first.name" /></td> <td width="5"> </td> <td><html:text property="proposerFirstName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="proposer.middle.name" /></td> <td width="5"> </td> <td><html:text property="proposerMiddleName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="proposer.last.name" /></td> <td width="5"> </td> <td><html:text property="proposerLastName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="policy.id" /></td> <td width="5"> </td> <td><html:text property="policyID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.first.name" /></td> <td width="5"> </td> <td><html:text property="patientFirstName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.middle.name" /></td> <td width="5"> </td> <td><html:text property="patientMiddleName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.last.name" /></td> <td width="5"> </td> <td><html:text property="patientLastName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.phone.number" /></td> <td width="5"> </td> <td><html:text property="patientPhoneNo"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.street" /></td> <td width="5"> </td> <td><html:text property="patientStreet"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.city" /></td> <td width="5"> </td> <td><html:text property="patientCity"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.state" /></td> <td width="5"> </td> <td><html:text property="patientState"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.emailid" /></td> <td width="5"> </td> <td><html:text property="patientEmailID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.dateofadmittance" /></td> <td width="5"> </td> <td><html:text property="dateOfAdmittance"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.dateofdischarge" /></td> <td width="5"> </td> <td><html:text property="dateOfDicharge"></html:text></td> </tr> <tr> <td align="left"><bean:message key="ailment.details" /></td> <td width="5"> </td> <td><html:textarea property="ailmentDetails"></html:textarea></td> </tr> <tr> <td align="left"><bean:message key="treatment.details" /></td> <td width="5"> </td> <td><html:textarea property="treatmentDetails"></html:textarea></td> </tr> <tr> <td align="left"><bean:message key="hospital.id" /></td> <td width="5"> </td> <td><html:text property="hospitalID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.name" /></td> <td width="5"> </td> <td><html:text property="hospitalName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.street" /></td> <td width="5"> </td> <td><html:text property="hospitalStreet"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.city" /></td> <td width="5"> </td> <td><html:text property="hospitalCity"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.state" /></td> <td width="5"> </td> <td><html:text property="hospitalState"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.pin" /></td> <td width="5"> </td> <td><html:text property="hospitalPinCode"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.emailid" /></td> <td width="5"> </td> <td><html:text property="hospitalEmailID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.phoneno" /></td> <td width="5"> </td> <td><html:text property="hospitalPhoneNo"></html:text></td> </tr> <tr> <td align="left"><bean:message key="room.type" /></td> <td width="5"> </td> <td><html:text property="roomType"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.id" /></td> <td width="5"> </td> <td><html:text property="doctorID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.first.name" /></td> <td width="5"> </td> <td><html:text property="doctorFirstName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.middle.name" /></td> <td width="5"> </td> <td><html:text property="doctorMiddleName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.last.name" /></td> <td width="5"> </td> <td><html:text property="doctorLastName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="expenses" /></td> <td width="5"> </td> <td><html:text property="estimatedExpenses"></html:text></td> </tr> <tr> <td align="left"><html:submit property="submit"> <bean:message key="button.submit" /> </html:submit></td> <td width="5"> </td> <td><html:reset /></td> </tr> </tbody> </table> </html:form>
homepage_menu.jsp <%@page language="java" contentType="text/html; charset=ISO-8859-1" pageEncoding="ISO-8859-1"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-html" prefix="html"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-bean" prefix="bean"%> <html:link page="/gotoPreAuth.do">PreAuthorization</html:link><br/><br/> <html:link page="/gotoSubmitClaims.do">SubmitClaims</html:link><br/><br/> <html:link page="/gotoPAFStatus.do">PreAuthorizationStatus</html:link><br/> <br/> <html:link page="/gotoClaimStatus.do">ClaimStatus</html:link> <br/> <html:link page="/gotoNewInsurance.do"><br>DependentInsurance</html:link><br/> <html:link page="/gotoDependentInformation.do"><br>Dependent Information</html:link><br/> <html:link page="/gotoMyAccountInfo.do"><br>My Account</html:link><br/>
header.jsp <%@page language="java" contentType="text/html; charset=ISO-8859-1" pageEncoding="ISO-8859-1" import="com.ibm.ankurstruts.data.*"%> <%@page buffer="256k" %> <%@taglib uri="http://jakarta.apache.org/struts/tags-html" prefix="html"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-bean" prefix="bean"%> Hii<%=((UserDetails)session.getAttribute("USER")).getUsername() %> <TABLE> <TBODY> <TR> <TD width="736"> </TD> <TD width="128"><html:link action="/logoff">logoff</html:link></TD> </TR> </TBODY> </TABLE>
bottom.jsp <%@page language="java" contentType="text/html; charset=ISO-8859-1" pageEncoding="ISO-8859-1"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-html" prefix="html"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-bean" prefix="bean"%> <p>Place login_bottom.jsp's content here.</p>

Its giving Illegal State Exception...What is the problem i am unable to understand..I also incresed size of buffer to 256k but still no solution....Please Help as to how to redirect to login page after session is invalidated


Thanks in advance

Hey i solved provblem to certain extent instead of jsp:forward i used response.sendRedirect("login.jsp")...but it is not redirecting to the page...Also its not showing any error...What is causing such thing..I am giving my jsp code please help..
<%@page language="java" contentType="text/html; charset=ISO-8859-1" pageEncoding="ISO-8859-1" import="com.ibm.ankurstruts.data.*"%> <%@ page buffer="256k" %> <%@taglib uri="http://jakarta.apache.org/struts/tags-html" prefix="html"%> <%@taglib uri="http://jakarta.apache.org/struts/tags-bean" prefix="bean"%> <% System.out.println("HADDI"); String str; //String str1=null; str=((String)session.getAttribute("loggedin")); if(str!=null){ System.out.println(str+".."); System.out.println("Session Active"); //System.out.println(e); }else{ response.sendRedirect("login.jsp"); System.out.println("CHIRKUT"); } %> <html:errors /> <br> <html:form action="/PreAuthorization"> <table> <tbody> <tr> <td align="left"><bean:message key="proposer.id" /></td> <td width="5"> </td> <td><html:text property="proposerID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="proposer.first.name" /></td> <td width="5"> </td> <td><html:text property="proposerFirstName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="proposer.middle.name" /></td> <td width="5"> </td> <td><html:text property="proposerMiddleName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="proposer.last.name" /></td> <td width="5"> </td> <td><html:text property="proposerLastName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="policy.id" /></td> <td width="5"> </td> <td><html:text property="policyID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.first.name" /></td> <td width="5"> </td> <td><html:text property="patientFirstName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.middle.name" /></td> <td width="5"> </td> <td><html:text property="patientMiddleName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.last.name" /></td> <td width="5"> </td> <td><html:text property="patientLastName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.phone.number" /></td> <td width="5"> </td> <td><html:text property="patientPhoneNo"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.street" /></td> <td width="5"> </td> <td><html:text property="patientStreet"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.city" /></td> <td width="5"> </td> <td><html:text property="patientCity"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.state" /></td> <td width="5"> </td> <td><html:text property="patientState"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.emailid" /></td> <td width="5"> </td> <td><html:text property="patientEmailID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.dateofadmittance" /></td> <td width="5"> </td> <td><html:text property="dateOfAdmittance"></html:text></td> </tr> <tr> <td align="left"><bean:message key="patient.dateofdischarge" /></td> <td width="5"> </td> <td><html:text property="dateOfDicharge"></html:text></td> </tr> <tr> <td align="left"><bean:message key="ailment.details" /></td> <td width="5"> </td> <td><html:textarea property="ailmentDetails"></html:textarea></td> </tr> <tr> <td align="left"><bean:message key="treatment.details" /></td> <td width="5"> </td> <td><html:textarea property="treatmentDetails"></html:textarea></td> </tr> <tr> <td align="left"><bean:message key="hospital.id" /></td> <td width="5"> </td> <td><html:text property="hospitalID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.name" /></td> <td width="5"> </td> <td><html:text property="hospitalName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.street" /></td> <td width="5"> </td> <td><html:text property="hospitalStreet"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.city" /></td> <td width="5"> </td> <td><html:text property="hospitalCity"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.state" /></td> <td width="5"> </td> <td><html:text property="hospitalState"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.pin" /></td> <td width="5"> </td> <td><html:text property="hospitalPinCode"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.emailid" /></td> <td width="5"> </td> <td><html:text property="hospitalEmailID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="hospital.phoneno" /></td> <td width="5"> </td> <td><html:text property="hospitalPhoneNo"></html:text></td> </tr> <tr> <td align="left"><bean:message key="room.type" /></td> <td width="5"> </td> <td><html:text property="roomType"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.id" /></td> <td width="5"> </td> <td><html:text property="doctorID"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.first.name" /></td> <td width="5"> </td> <td><html:text property="doctorFirstName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.middle.name" /></td> <td width="5"> </td> <td><html:text property="doctorMiddleName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="doctor.last.name" /></td> <td width="5"> </td> <td><html:text property="doctorLastName"></html:text></td> </tr> <tr> <td align="left"><bean:message key="expenses" /></td> <td width="5"> </td> <td><html:text property="estimatedExpenses"></html:text></td> </tr> <tr> <td align="left"><html:submit property="submit"> <bean:message key="button.submit" /> </html:submit></td> <td width="5"> </td> <td><html:reset /></td> </tr> </tbody> </table> </html:form> .

Once data is written to the response you can't redirect.