-----------------------------
Please read the FAQ!
<http://java.apache.org/faq/>
-----------------------------
> Well, I've already implemented a servlet that works in this manner, and it's
> quite nice. The only problem is that I store the username in the HttpSession
> object, which can timeout after a while. There doesn't seem to be any way to
> tell jserv never to invalidate a session. You can set the timeout to be really
> high, but that's not a very good solution. Anyway, if the user remains inactive
> for too long, his HttpSession is gone and none of my other servlets can check
> and see who he is. Any ideas?
Since you've gone to some trouble to create this auth system, why don't
you write in some code to use Cookies. This way, the user would never need
to log back in, or set the cookie to expire after 10 hours so the user
would have to login in everyday.
When you're finished writing this code, perhaps you should post it :)
Pratik
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html/>
Problems?: [EMAIL PROTECTED]
