The problem is AFAIK, that you cannot access the list of all sessions
through the servlet-api.
That feature was in the servlet-api at some time, but was removed, IIRC due
to security issues.
If you have a list of all sessions, you can easily iterate over them at
login and manually expire all old s
> -Ursprüngliche Nachricht-
> Von: Leon Rosenberg [mailto:[EMAIL PROTECTED]
> Gesendet: Donnerstag, 6. Oktober 2005 11:20
> An: Tomcat Users List
> Betreff: Re: custom session manager
>
>
> On 10/6/05, Tobias Meyer <[EMAIL PROTECTED]> wrote:
> >
> > Or, cou could add a static hashmap to y
> -Ursprüngliche Nachricht-
> Von: Leon Rosenberg [mailto:[EMAIL PROTECTED]
> Gesendet: Donnerstag, 6. Oktober 2005 07:43
> An: Tomcat Users List; Mark
> Betreff: Re: custom session manager
>
>
> On 10/6/05, Mark <[EMAIL PROTECTED]> wrote:
> > basically, I want to prevent users from log
