you can prevent double logon in the following manner:
if one user a has logged on in one machine, you store his user id along
with the sessionid in the servlet contxt using setAttribute() method. now
when the same user a tries to log in from some other machine, you remove
the previous name and session id from servlet context and set the new sid
created from the second machine with the user's name. now from the first
machine the user wont be able to access any more since corresponding to
that user name a, the session id is different. this way you invalidate the
first login and allow the second one.
now my problem is that if say multiple users wish to log in from the same
machine, they have a common session since only one session can be created
on one machine at a time. now is there any way to differentiate between the
windows associated with each user since they sgare the common session. how
do i handle timeouts for various users using this? like user a is not
accessing the session for a long time but still the session is being
accessed by user b who is logged on to the same machine. how wouls i know
that user a needs to be disabled since he hasnt accessed the session for a
long time?
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
