D
dina
We are implementing a security module in one of our applications.
The application is a servlet app that works with Tomcat and Internet
Explorer 6.
We would like to implement the following security events:
1) Deny more than N (global parameter) connections to a user. For
example - if N=2, the user 'usr' will be able to login to the system
from two different sessions simultaneously.
2) From each PC, only one instance of the application will run. On one
PC, only one IE windows will be able connect, and not two or more
simultaneously.
All the user names and passwords are restored in an Oracle database.
We would like to achive the following:
When a user logs to the application the users's URL and session will be
saved in the database by updating the matching columns (ip and
sessionid). When a user logs out the ip and sessionid are deleted (set
null). If a user logs in and the URL and sessionid are not null, then
we will check if the seesionid is valid in WEB app.
How can we check on a known session if the session is valid or not?
Please add some code for examples.
Thanks,
Dina
The application is a servlet app that works with Tomcat and Internet
Explorer 6.
We would like to implement the following security events:
1) Deny more than N (global parameter) connections to a user. For
example - if N=2, the user 'usr' will be able to login to the system
from two different sessions simultaneously.
2) From each PC, only one instance of the application will run. On one
PC, only one IE windows will be able connect, and not two or more
simultaneously.
All the user names and passwords are restored in an Oracle database.
We would like to achive the following:
When a user logs to the application the users's URL and session will be
saved in the database by updating the matching columns (ip and
sessionid). When a user logs out the ip and sessionid are deleted (set
null). If a user logs in and the URL and sessionid are not null, then
we will check if the seesionid is valid in WEB app.
How can we check on a known session if the session is valid or not?
Please add some code for examples.
Thanks,
Dina