Originally posted by Sirish Kumar Gongal Reddy:
I am not using cookies to handle the session.
You may not think you're using cookies, but behind the scenes, WebSphere uses cookies to keep track of sessions. The only time this may not be the case is if you've turned off cookies entirely in your browser and you've configured WebSphere to use URL rewriting instead of cookies in session management.
Regarding why activity on a window in one system keeps the session on another system alive, this may be due to the fact that you're invalidating the session yourself after a certian period of time rather than configuring a timeout value through WebSphere or through the J2EE APIs.
There are three ways to configure session timeout values:
In the WebSphere admin console for all web applications on that server by selecting Servers--Application servers--server_name--Web container settings--Session managementProgramatically with the statement: session.setMaxInactiveInterval(1800);In the web.xml file in your web applicationIn the last option, the entry will look like this:
[ July 02, 2007: Message edited by: Merrill Higginson ]