Ciaran Hanley wrote:
Hi thanks for your reply,
I am using form based authentication. Cookies are enabled. I am storing all session information using request.getSession() for example:
request.getSession().getServletContext().setAttribute("user", loggedUser);
stores the user bean in the session.
Ciaran, you must use request.getSession().setAttribute( "user",loggedUser );
When you use
request.getSession().getServletContext().setAttribute("user", loggedUser);
you're putting your bean at application scope...
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]